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easy  setup, 


routers  from  Efficient  and  NetGear  win  our  Blue  Ribbon  Award  for  their 
built-in  security  and  remote  management  capabilities.  PAGE  37. 
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VoIP  horizons  expand 

Cisco,  others  set  to  deliver  products  that  push  IP  telephony  to  more  customers. 


■  BY  PHIL  HOCHMUTH 

The  IP  telephony  offensive  continued  in 
earnest  last  week  as  a  handful  of  vendors  an¬ 
nounced  products  aimed  at  helping  organiza¬ 
tions  of  all  sizes  make  voice  over  IP  a  reality 

Cisco  released  IP  PBX  products  and  product 
bundles  aimed  at  shops  with  50  to  200  seats, 
while  Pingtel  and  Mitel  targeted  small  and 
midsize  companies  with  IP  PBXs  based  on  the 
emerging  Session  Initiation  Protocol  (SIP) 
and  the  Linux  operating  system.  3Com,  al¬ 
ready  a  leader  in  VoIP  for  midsize  companies, 
has  bigger  plans  for  its  convergence  box.  The 
company  this  week  will  announce  it  is  dou¬ 
bling  the  capacity  of  its  SuperStack  3  NBX  IP 
PBX  to  1,500  users.  (See  related  VoIP  story, 
page  15.) 

The  moves  could  be  key  for  users  thinking 
about  converging  their  voice  and  data  net- 


Sizing  up  VoIP 


While  still  low,  the 
average  number  of 
VoIP-enabled 
phones  per 
site  is  on 
the  rise. 


Average  per-site 
deployment  of  IP  phones 


SOURCE. 

CAHNERS 

IN-STAT/MDR 


2000 


2001 


works,  as  IP  telephony  promises  to  reduce  ad¬ 
ministration  costs. 

“For  a  small  business,  the  real  advantage  [of 
VoIP]  is  what  it  offers  in  terms  of  lowering  our 
administrative  costs,”  says  David  Roessler, 
director  of  IS  at  Quay  which  uses  one  of  the 


new  Cisco  small-business  VoIP  bundles. 

Cisco  —  which  has  led  the  large-enterprise 
VoIP  push  with  customers  such  as  Dow  Chem¬ 
ical  and  Merrill  Lynch  —  scaled  down  its  IP 
PBX  with  the  new  Media  Convergence  Server 
(MCS)  78 15- 1000,  aimed  at  sites  with  up  to  200 
users. The  Windows  2000-based  IP  PBX  runs 
the  company’s  CallManager  call  control  soft¬ 
ware,  which  is  the  base  technology  for  Cisco’s 
higher-scaling  MCS  products  as  well.  (The 
MCS  7815-1000  is  available  now  for  $8,000.) 

Cisco  also  released  two  packages  based  on 
its  Integrated  Communication  Solution  (ICS) 
7750,  which  combines  voice  mail,  PBX  func¬ 
tions  and  auto-attendant  features  in  one  IP 
platform:  the  ICS  7750-AY  which  has  eight  ana¬ 
log  port  trunks  for  public  switched  telephone 
network  connections  and  eight  analog  lines 
for  fax  and  audioconference  devices;  and  the 

See  VoIP,  page  53 


IT  buyers  swap 
price-cutting  tips 


Microsoft  touts  tighter 
Web  services  security 


Chambers  on 
carriers 


In  an  interview 
from  the  show  in 
Atlanta,  Cisco  CEO 
John  Chambers 
talks  of  lessons 
learned  in  the 
tough  service 
provider  market. 


Subdued  show 


Focus  is  less  on  the 
next  big  thing  and 
more  on  survival. 


■  BY  ELLEN  MESSMER 

ORLANDO  —  Getting  the  best 
deal  on  software  licensing  and 
hardware  purchases  isn’t  easy  in 
an  industry  where  there  are  al¬ 
most  no  “real”  published  prices, 


and  vendors  are  trying  to 
squeeze  every  dime  out  of  buyers 
that  they  can. 

But  IT  managers  are  fighting 
back  by  dragging  information 
about  secretive  contract  licensing 
into  the  light  of  day.  That’s  what 
happened  last  week  at  Gartner’s 
10th  annual  IT  Assets  Manage¬ 
ment  Conference  in  Orlando, 
where  more  than  700  IT  man¬ 
agers  convened  to  find  out  what 
they  can  do  to  get  a  fair  shake 
from  increasingly  cagey  software 
vendors.  The  bottom  line  is  that 
this  has  been  a  year  that  “software 
vendors  are  pressed  to  increase 
See  Conference,  page  12 


■  BY  JOHN  FONTANA 

REDMOND,  WASH.  —  Microsoft 
last  week  took  its  first  real  shot  at 
addressing  Web  services  security 
shortcomings,  though  critics  say 
the  company  will  need  to  follow 
up  with  better  support  for  het¬ 
erogeneous  networks  and  an¬ 
swer  questions  about  the  cultural 
side  of  adopting  this  emerging 
technology 

Microsoft’s  TrustBridge  software 
is  designed  to  help  companies 
more  easily  and  safely  share  in¬ 
formation  with  trading  partners 
and  customers.TrustBridge  would 
let  an  end  user  authenticate  on 
his  company’s  network  and  carry 


that  authentication  to  other  com¬ 
panies’  networks  to  access  res¬ 
ources, such  as  Web  services 

Lack  of  security  is  the  No.  1 
issue  inhibiting  enterprise  adop¬ 
tion  of  Web  services,  according  to 
a  recent  study  by  Hurwitz  Group. 

The  foundation  of  Trust  Budge  is 
Kerberos  Version  5,  a  standard  au¬ 
thentication  technology  sup¬ 
ported  in  Microsoft’s  Active  i 
rectory,  and  WS-Securib  a  re¬ 
posed  Web  services  security 
specification  based  on  In: 
Object  Access  Protocol  (T 
and  introduced  in  April  by  M:  uo- 
soft,  IBM  and  VeriSign .1:  us‘ i1'.,  ■ 
fits  into  Microsoft’s  grain;  .  ' 
See  Microsoft,  pats  t 


(©server 


Linux'  ready  with  self-managing  features  for  every  e-business. 

mm 

Intel  -based  /  xSeries™ 

It’s  an  affordable  and  powerful 
combination  of  mainframe- 
inspired  reliability  and  smart 
systems  management  tools. 

UNIX"5/  pSeries™ 
Highly  available,  highly  affordable 
and  highly  coveted.  The  pSeries  is 
the  platform  of  choice  for  powerful 
UNIX  and  Linux  solutions. 

■ 

■ 

Midrange  /  iSeries™ 

Brings  easy-to-deploy,  plug  and 
play  e-business  to  your  business. 
Sophisticated  technology  that’s 
easy  to  manage  and  Linux  ready. 

Mainframe  /  zSeries™ 

Maximum  reliability,  maximum  power, 
maximum  flexibility.  Designed  for  up 
to  99.999%  uptime'  to  handle  the 
demands  of  today’s  e-businesses. 

Omaha  Steaks’  online  sales  have  soared  150%  over  the  last  3  years.  And  with  20%  of  their  sales  conducted  over 

the  Web,  they  required  a  highly  available  server.  Since  deployment,  their  IBM  (©server  iSeries  has  been  rock 

solid  (2  years,  no  unplanned  downtime).  For  a  consultation  with  an  iSeries  specialist,  call  1  800  426-7777  and 

mention  priority  code  102AG006,  or  visit  ibm.com/eserver/omaha  /^w  .  u  ^ 

brines*  a  ins 


'Requires  Parallel  Sysplex’  environment.  All  customer-related  numbers  and  results  reported  are  from  customer  sources.  Results  obtained  in  other  customer  environments  will  vary.  IBM.  the  e-business  logo,  e-business  is  the  game.  Play  lo  win. 
iSeries,  pSenes.  xSeries.  zSeries  and  Parallel  Sysplex  are  trademarks  or  registered  trademarks  of  International  Business  Machines  Corporation.  Linux  is  a  registered  trademark  of  Linus  Torvalds.  Intel  is  a  registered  trademark  of  Intel 
Corporation  or  its  subsidiaries  in  the  United  States  and  other  countries.  UNIX  is  a  registered  trademark  of  The  Open  Group.  Other  company,  product  and  service  names  may  be  trademarks  or  service  marks  of  others.  2002  IBM  Corporation 
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If  you  had  BrightStor  ARCserve  Backup,  you  wouldn't  need  this. 

Worried  that  your  current  backup  software  isn't  going  to  be  there  when  you  need  it  most?  It's  time  to  consider  BrightStor” 
ARCserve’  Backup,  the  industry  leader  in  backup  and  data  protection.  Right  now  is  the  best  time  to  make  your  decision  to  change 

with  the  BrightStor  ARCserve  Backup  Competitive  Replacement  Promotion.  For  as  little  as  $495, 
you  can  get  a  complete  suite  of  industry-leading  backup  and  restore  technology.  Or  choose  the 
$995  Deluxe  Package  including  the  Disaster  Recovery  Option,  Open  File  Protection,  Client 
Agents,  24  x  7  Technical  Support,  Upgrade  Protection  and  more  valued  at  up  to  $5,800.  Of 
course,  BrightStor  ARCserve  Backup  isn't  just  a  great  deal.  It's  also  a  great  product.  And  it's  part 
of  the  most  comprehensive  family  of  storage  management  solutions,  backed  by  the  company  that  protects  99%  of  the  Fortune  500.' 
Contact  us  today  to  experience  BrightStor  ARCserve  Backup.  And  get  the  peace  of  mind  you  just  can't  get  from  anywhere  else. 

ca.com/arcserve/replace  1-866-480-8903  Promo  Code  1029 


$495  $995 

Complete  Suite  Deluxe  Package 

BrightStor  ARCserve  Backup 
Competitive  Replacement  Promotion 


BrightStor  ARCserve  Backup 


Computer  Associates™ 


Promotional  aH«v  is  volid  in  the  continental  U5  ond  Canada  between  June  10.  2002  and  September  30.  2002  User  must  proride  proof  of  preexisting  competitive  storage  software  to  purchase  promotional  corr^etitive  replacement 
SKUs  The  above  amounts  are  m  U  S  dollars  CA  reserves  the  right  to  alter,  amend,  cancel  or  extend  this  promotion  at  any  time,  without  notice  All  decisions  by  CA  are  find.  Vbid  where  prohibited  by  law,  see  website  for  corrplete  details. 

C  2002  Computer  Associates  International,  Inc  (CA)  All  rights  reserved 


ews 

■  8  VeriSign  gets  out  of  BIND. 

■  10  Tivoli  touts  Web  services  management,  security. 

■  10  Big  Blue  takes  WebSphere  vertical. 

■  12  Security  concerns  about  grid  computing  addressed  by  Sun  and 

Global  Grid  Forum. 

■  52  Survival  is  key  message  at  SuperComm. 

■  52  Cisco’s  Chambers  surveys  carrier  market. 


Infrastructure 

■  15  Engineering  a  VoIP  swap. 

■  15  RouteScience  box  chooses 
best  path. 

■  16  Allied  Telesyn  debuts  low- 
costs  switches. 

■  16  Kevin  Tolly:  IPX-cellence 

overlooked? 

Net.Worker 

■  17  Connections  2002  notebook: 
Where  home  network  technologies 
are  and  where  they're  headed. 


The  Edge 

■  27  Appian  makes  waves  with 
metro  Ethernet. 

Technology  Update 

■  31  XML  accelerators  help  Web 
servers. 

■  31  Steve  Blass:  Ask  Dr. 

Internet. 

■  32  Mark  Gibbs:  As  easy  as 
falling  off  a  syslog. 

■  32  Keith  Shaw:  Copying 
DVDs:  Is  it  worth  the  time? 


Enterprise 

Applications 

■  19  Cultivating  managed  security. 

■  19  Miramar  beefs  up  PC  migra¬ 
tion  management. 

■  22  Citrix  boosts  portal  product. 

■  22  Scott  Bradner:  Pretty 
is  as  pretty  does. 

Service  Providers 

■  23  Qwest  readies  long-distance 
submissions. 

■  23  Rackspace  rolls  out  beefed- 
up  hosting  service. 

■  24  Lisa  Pierce:  VoIP  trans¬ 
formation  will  take  some  time. 


Opinions 

■  34  Editorial:  What's  'broad¬ 
band'  in  the  policy  debate? 

■  35  Joel  Snyder:  Next  ter¬ 
ror  target:  The  Internet? 

■  35  Frank  Dzubeck:  The 

next  killer  app:  A  grid. 

■  54  Backspin:  Flak  In  the 
mail. 

■  54  'Net  Buzz:  HP  apologizes 
—  sort  of  —  for  'men  are  idiots' 
TV  commercial. 

Management 

Strategies 

■  40  The  power  of  users:  Raising 
the  technical  skills  of  proficient 
users  extends  IT’s  reach  and 
reduces  help  desk  calls. 


CHARLES  FORD 


Features 


/firmer 


RIBBON 


Review 

SOHO  routers  offer  easy  setup,  built-in  security  and  remote  management  capabilities 
for  less  than  SI, 000.  Page  37. 
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Buyer's  Guide:  SOHO  routers 

The  most  difficult  part  of  setting  up  a  small  office/home  office  network 
is  picking  which  router  to  use  to  connect  multiple  PCs  to  a  single  broad¬ 
band  connection.  To  help,  we've  compiled  this  downloadable  list  of  52  dif¬ 
ferent  SOHO  routers  from  14  vendors. 

DocFinder:  9741 

Forum:  What  do  you  want  from  Cisco? 

We  asked  die-hard  Cisco  customers  how  the  company  could  improve. 

They  made  several  suggestions.  Now  it's  your  turn. 

DocFinder:  9742 

SuperComm  2002  Weblog 

Get  the  real  scoop  from  Atlanta  with  our  Weblog.  Edge  Managing  Editor 
Jim  Duffy  and  Senior  Editor  Tim  Greene  give  you  the  news  straight  from 
the  show  Door. 

DocFinder:  9743 

Seminars  and  Events 

State  of  Security:  Your  way  toward  a  safe  net 

We  know  security  is  your  top  concern  and  you've  got  lots  of  questions. 
Find  the  answers  at  our  Security  Town  Meeting.  Register  now  for  a 
city  near  you. 

DocFinder:  9244 
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Compendium 

Keeping  spammers  at  bay 

Fusion  Executive  Editor  Adam  Gaffin  offers  relief  for  those 
whose  Web  sites  with  mailto:  links  are  being  inundated  with 
junk  mail. 

DocFinder:  9744 

Help  Desk 

Two  operating  systems,  one  machine 
Columnist  Ron  Nutter  helps  a  reader  who  wants  to  run 
Windows  XP  and  2000  Server  on  the  same  machine. 

DocFinder:  9745 

SOHO  Tech 

Walls  and  wireless  networks 

Columnist  James  Gaskin  shares  his  struggle  to  extend  high 
speed  throughout  his  home  and  introduces  you  to  Intuits 
standout  new  small-business  product. 

DocFinder:  9746 

View  from  The  Edge 

More  cuts  at  Nortel 

Edge  Managing  Editor  Jim  Duffy  says  the  optical  re :  ' 

will  cost  3,500  jobs  and  the  company's  components  business 
might  be  sold. 

DocFinder:  9747 
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News 


WorldCom  to  stop  reselling  wireless 

■  WorldCom  last  week  revealed  plans  to  leave  the  wireless  resale 
business,  which  company  officials  say  has  been  unprofitable.  The 
announcement  came  amid  rumors  that  World¬ 
Com  is  preparing  to  lay  off  as  many  as  16,000 
of  its  80,000-member  workforce.  WorldCom  s 
wireless  resale  business  took  in  about  $1  bil¬ 
lion  last  year  from  2  million  customers.  The 
company  says  several  carriers  are  interested 
in  buying  the  wireless  business. 


HP’s  middleware  also  includes  its  eSpeak  software  for  building  network-based  services 
and  its  Process  Manager  business-modeling  tool. 


Velocita  files  for  bankruptcy 


■  Network  builder  and  telecom  services  provider  Velocita  has  filed  for  Chapter  1 1  bank¬ 
ruptcy  protection. The  Falls  Church, Va., company  has  been  building  a  nationwide  OC-192 
network  that  is  almost  complete.  The  company’s  primary  business  has  been  selling  ser¬ 
vices  to  other  service  providers,  although  it  also  did  have  enterprise  offerings,  including  a 
VPN  service.  In  addition  to  building  its  own  network, Velocita  has  worked  on  AT&T’s  next- 
generation  network.  Cisco  was  a  major  backer  of  Velocita,  having  purchased  $200  million 
in  Velocita  stock  in  May  2001  and  providing  up  to  $285  million  in  financing. 


Sun  patches  holes  in  Solaris 


■  Sun  has  released  a  patch  that  closed  two  security  holes  in  its  Solaris  operating  system. 
The  holes  could  have  let  an  attacker  take  control  of  vulnerable  systems,  the  company  says. 
The  vulnerabilities  affect  the  snmpdx  and  mibiisa  agents  that  are  components  of  Solaris 
Versions  2.6,7  and  8.The  agents  run  with  root  privileges,  the  highest  level  of  access  on  sys¬ 
tems,  and  are  part  of  the  operating  system’s  SNMP  capabilities. The  capabilities  allow  for 
device  configuration  and  administration.The  snmpdx  agent  monitors  SNMP  requests  and 
information  from  the  system  and  forwards  relevant  information  to  mibiisa. The  vulnera¬ 
bilities  come  in  the  form  of  a  format-string  vulnerability  in  snmpdx  and  a  buffer  overflow 
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Military  urged  to  increase  IT  security 

■  Loose  lips  sink  servers?  In  a  move  that  harkens  back  to  the 
World  War  II  “Loose  Lips  Sink  Ships”  campaign,  the  National 
Security  Agency  last  week  launched  a  series  of  ads  urging 
military  personnel  to  protect  national  secrets  as  the  nation 
engages  in  its  global  antiterrorist  effort.  The  colorful  posters 
feature  military  personnel  at  work  with  the  words 
“Information  Security  Begins  With  You.”The  ads  are  running 
primarily  in  military-focused  publications,  such  as  The  Army 
Times,  and  will  be  hung  on  the  walls  in  military  facilities. 

NFR  Security  founder  leaves  company 

■  NFR  Security  last  week  confirmed  that  founder  and  CTO 
Marcus  Ranum  has  left  the  firm  to  pursue  outside  interests. 
NFR  Security  CEO  Jack  Reis,  denying  reports  that  Ranum  had 
been  pushed  out,  says  Ranum  “felt  he  was  no  longer  con¬ 
tributing  positively  to  the  company’’ Ranum,  long  credited  as 
a  pioneering  inventor  in  the  area  of  intrusion-detection  sys¬ 
tems,  could  not  be  reached  for  comment. 


HP  may  sell  middleware  to  Oracle 

■  Oracle  is  in  discussions  with  Hewlett-Packard  to  buy  its 
middleware  assets,  which  could  provide  a  needed  boost  to 
Oracle’s  application  server  business,  industry  sources  say.  HP 
disclosed  last  week  that  it  plans  to  “retire"  its  middleware 
assets  as  part  of  an  effort  to  achieve  profitability  in  its  soft¬ 
ware  group.  HP  officials  declined  to  elaborate,  saying  the 
company  will  provide  details  about  its  strategy  at  a  customer 

event  later  this  month  in  Seattle.  HP’s  middleware  includes  products  it  acquired  from 
Bluestone  Software  in  2000  —  including  a  Java  2  Platform  Enterprise  Edition  application 
server,  transaction  server  and  various  XML  tools  —  in  a  deal  valued  at  about  $470  million. 

COMPENDIUM 

Jabbering  away 

A0L  Instant  Messenger?  That  is  so  ‘90s.  IBM  has  posted  a  paper  on  using 
Jabber,  an  open-source,  XML-based  instant-messaging  client  in  enterprise 
and  e-commerce  applications. 

Find  it  and  other  stuff  you  gotta  see  on  Compendium  at: 
www.nwfusion.com,  DocFinder:  9744. 


Score  one  for  the  customer.  The  U.K.  government  says  it  signed  a  licensing 
agreement  with  Microsoft  earlier  this  year  that  it  estimates  will  save  taxpayers  $147  million  over  the 
next  three  years.  Government  agencies  negotiated  the  deal  as  a  group  after  finding  huge  discrepancies 
between  what  different  departments  had  been  paying.  Emboldened  by 
the  deal,  the  government  is  now  even  looking  at  open  source  software  r 
to  complement  or  replace  some  of  its 
Microsoft  software. 


Not  over  it  yet. 

Hewlett-Packard  management  is 
still  bitter  about  the  merger 
approval  battle  with  former  HP 
director  Walter  Hewlett.  Said 
HP's  new  president  (and  former 
Compaq  CEO)  Michael  Capellas 
at  the  start  of  a 
presentation  to  analysts 
last  week:  “It's  amazing 
how  much  you  can  get 
done  when  you  don't  have 
to  count  votes.  It’s 
extraordinary."  > 


Fun  and 

games?  The  time  has  to  come  from  somewhere,  and  the 
trade-offs  can't  be  good.  A  new  report  from  consulting  firm  DFC  Intelligence  predicts 
a  sixfold  increase  for  online  game  playing  by  2006. 


in  mibiisa.The  flaw  is  mitigated  because  the  vulnerabilities  only  exist  on  systems  running 
Sun  Solstice  Enterprise  Master  Agent, snmpdx  and  mibiisa. 


IBM  sheds  another  1,500  jobs 


■  IBM  announced  more  layoffs  last  week,  this  time  in  its  microelectronics  unit,  which 
manufactures  and  distributes  memory,  storage  network  and  PowerPC  chips.  A  total  of 
1,500  jobs,  representing  7.5%  of  the  approximately  20,000  employees  in  the  microelec¬ 
tronics  unit,  will  be  cut.  IBM’s  microelectronics  unit  is  spread  across  three  main  locations: 
East  Fishkill,  N.Y;  Burlington, Vt.;  and  Endicott,  N.Y  IBM  announced  layoffs  at  four  manu¬ 
facturing  plants  two  weeks  ago.  IBM  also  announced  the  sale  of  its  hard-disk  manufactur¬ 
ing  processes  to  Hitachi  last  week,  creating  a  new  company  owned  mostly  by  Hitachi. 
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MAYBE  “CUSTOMER  SERVICE” 

SHOULD  BE  MORE  THAW  OWE 

DEPARTMENT. 


When  everyone  focuses  on  customers,  something  amazing  happens:  departments 
communicate,  questions  get  answered,  and  products  keep  moving.  That’s  why  the  mySAP™ 
Customer  Relationship  Management  solution  links  customers  with  your  complete 
organization.  It  keeps  data  consistent  across  all  touch  points,  and  it’s  the  only  CRM  solution 
that  integrates  with  all  other  business  processes,  so  it  shortens  sales  cycles  and  low'ers  costs. 
Which  means  your  customers  won’t  be  waiting  around  for  good  service;  they’ll  he  too  busy 
getting  it.  For  more  info,  call  800  880  1727  or  visit  www.sap.com 
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VeriSign  to  give  BIND  the  boot 


■  BY  CAROLYN  DUFFY  MARSAN 

VeriSign  is  upgrading  the  direc¬ 
tory  and  database  software  that 
underpins  most  Web  site  lookups 
in  a  move  that  experts  say  will 
help  improve  the  security  and 
reliability  of  the  Internets  DNS. 

VeriSign  is  replacing  an  open 
source  software  package  called 
Berkeley  Internet  Name  Domain 
(BIND)  with  its  own  proprietary 
technology.  Dubbed  ATLAS,  for 
Advanced  Transaction  Look-up 
and  Signaling,  VeriSigns  propri¬ 
etary  software  will  be  installed  in 
its  13  DNS  server  sites  around  the 
globe  this  summer  and  will  go 
into  production  mode  in  the  fall. 

BIND,  which  runs  on  most  cor¬ 
porate  domain  name  servers, 
translates  domain  names  into 
numerical  IP  addresses.  Devel¬ 
oped  in  the  early  1980s,  BIND 
lacks  robust  security  and  scalabil¬ 
ity  Last  week,  CERT  warned  that  a 
flaw  in  certain  versions  of  BIND 
could  leave  parts  of  the  Internet 
vulnerable  to  denial-of-service 
(DoS)  attacks. 


DNS  breakdown 

Percentage  of  publicly 
accessible  domain  name 
servers  using  the  following: 


With  ATLAS, VeriSign  says  it  will 
improve  its  protection  against 
distributed  DoS  attacks  along 
with  the  speed  and  reliability  of 
lookups. 

“The  major  focus  of  ATLAS  is 
reliability, scalability  and  flexibil¬ 
ity  for  conversions,”  says  Aristotle 
Balogh,  vice  president  of  engi¬ 
neering  at  VeriSign  Global  Regis¬ 
try  “Some  of  the  performance 
improvements  come  from  inno¬ 
vative  algorithms  for  lookups 


and  updates.” 

DNS  experts  say  VeriSigns 
move  to  ATLAS  will  help  fix  a 
DNS  environment  that  is  too 
homogeneous. 

“Having  everyone  run  the  same 
name  server  is  a  screaming  invi¬ 
tation  for  bad  things  to  happen,” 
says  David  Conrad,  CTO  at  Nom- 
inum,  a  DNS  service  provider. 
“There  has  been  a  push  in  the 
root  server  community  as  well  as 
the  top-level  domain  [registry] 
community  to  try  to  get  people  to 
diversify  This  way  a  single  DoS 
attack  wouldn’t  take  out  all  the 
name  servers.” 

VeriSign  is  the  latest  domain 
name  registry  to  migrate  away 
from  BIND. Others  that  are  choos¬ 
ing  alternatives  include  the  oper¬ 
ators  of  the  new  .coop,  .aero  and 
.info  registries,  which  selected 
software  from  Nominum,  and 
Ripe  Network  Coordination  Cen¬ 
ter,  which  is  writing  its  own  DNS 
software. 

“There  is  a  greater  diversity  of 
products  available  to  provide 
DNS  services  and  products,” 


Conrad  says.'That  trend  will  con¬ 
tinue  as  we  get  more  special  pro¬ 
ducts  to  deal  with  special  needs.” 

VeriSigns  shift  to  ATLAS 
shouldn’t  affect  DNS  interoper¬ 
ability,  says  Ray  Plzak,  president 
of  the  American  Registry  for 
Internet  Numbers  and  co-chair 
of  the  Internet  Engineering  Task 
Force’s  Domain  Name  Server 
Operations  working  group. 

“The  only  standardization  is  in 
the  IETF’s  [requests  for  com¬ 
ment],"  Plzak  says.“It  just  so  hap¬ 
pens  that  BIND  is  used  by  every¬ 
body  But  as  long  as  people  imple¬ 
ment  to  the  standards,  it  shouldn’t 
matter  what  software  they  use.” 

VeriSign’s  ATLAS  software  has 
been  under  development  for  18 
months  and  cost  the  company 
several  million  dollars,  officials 
say.  Key  features  are: 

•  Scalability  from  an  average  of 
6.5  billion  DNS  queries  per  day 
today  to  a  projected  100  billion 
queries  per  day  with  10-msec  re¬ 
sponse  time. 

•  Ability  to  propagate  updates 
to  DNS  information  in  6  seconds 


vs.  12  hours  today  This  will  let  net¬ 
work  managers  make  near-instan¬ 
taneous  changes  to  DNS  informa¬ 
tion  and  be  assured  of  Web  site 
availability 

•  Next  year  it  will  support  not 
only  DNS  lookups  but  also 
emerging  protocols  such  as  Ses¬ 
sion  Initiation  Protocol  and  Sig¬ 
naling  Series  7  for  Internet  tele¬ 
phone  calls. 

While  it  rolls  out  the  new  soft¬ 
ware, VeriSign  also  is  upgrading  its 
servers  and  network  architecture. 
The  company  is  installing  new 
routers,  switches  and  load  bal¬ 
ancers  from  Cisco,  Alteon  and 
Foundry  Networks.  New  servers 
are  from  IBM  and  Intel. 

Meanwhile,  CERT’s  latest  advi¬ 
sory  about  BIND  affects  all  but 
the  most  recent  version  of  BIND 
9,  which  was  released  in  May. 
DNS  servers  running  software 
prior  to  BIND  9.2.1  are  vulnera¬ 
ble  to  attacks  that  can  shut 
down  DNS  service  by  sending  a 
specific  packet,  CERT  said.  The 
service  remains  unavailable  un¬ 
til  restarted.  ■ 


Building  trust 


Microsoft  says  its  new  TrustBridge  technology  will  work  with  Active  Directory  to  make  for 
secure  Web  services  transactions. 


Company  A  user 
authenticates  to  Active 
Directory  seeking  access 
to  a  Web  service  on 
Company  B’s  network. 


©_ 


The  Active  Directory 
generates  a  Kerberos 
ticket,  which  it 
passes  to  the 
TrustBridge  node. 


© 


TrustBridge  passes  the  ticket  using 
the  WS-Security  format  and  Simple 
Object  Access  Protocol  (SOAP) 
envelope  over  the  Internet  to  a 
TrustBridge  node  at  Company  B. 


)  Q 

The  ticket  is  extracted  from  the  WS-  The  user  is 
Security  format  and  SOAP  envelope  granted  or 
and  used  to  authorize  resource  access  denied  acces 
to  the  Company  A  user  either  with  the  to  a  Web 
Active  Directory  or  Kerberos  server.  service. 


Microsoft 

continued  from  page  1 

scheme,  under  which  the  com¬ 
pany  is  looking  to  supply  software 
as  services. 

TrustBridge’s  major  limitation 
—  as  even  Microsoft  acknowl¬ 
edges  —  is  that  it  works  only 
between  companies  running 
Microsoft’s  Active  Directory  or 
between  Active  Directory  and 
Kerberos  5  Key  Distribution  Cen¬ 
ter  (KDC)  servers. 

What’s  more,  even  though  Ker¬ 
beros  support  seems  to  move 
TrustBridge  away  from  solely  a 
proprietary  Microsoft  technolo¬ 
gy,  there  have  been  ongoing 
problems  integrating  Unix-based 
Kerberos  services  with  Micro¬ 
soft's  implementation  of  Ker¬ 
beros  5. 

Even  as  TrustBridge  might  begin  to  solve 
technical  issues,  observers  say  it  ignores 
the  cultural  issues  involved  in  establishing 
policies  and  procedures  for  creating  trust 
between  companies. 

“It  is  a  huge  change  in  the  culture  of  IT 
to  move  to  a  centralized  identity  man¬ 
agement  structure,”  says  George  Defen- 
baugh,  manager  of  global  IT  infrastruc¬ 
ture  projects  for  Amerada  Hess,  an  inte¬ 
grated  petroleum  company  in  New  York 
City  that  is  crafting  a  directory  environ¬ 
ment  with  multiple  instances  of  Active 
Directory.  “We've  been  having  conversa¬ 
tions  on  just  how  to  set  this  up  across 


multiple  forests.  Security  by  its  very 
nature  is  complex." 

Critics  say  another  shortfall  is  that  Trust- 
Bridge  does  not  support  Security  Asser¬ 
tion  Markup  Language  (SAML),a  Web  ser¬ 
vices  protocol  to  foster  interoperability 
among  disparate  authorization  and  au¬ 
thentication  systems  that  is  slated  for  stan¬ 
dards  ratification  next  month  by  the  Or¬ 
ganization  for  the  Advancement  of  Struc¬ 
tured  Information  Standards.  S AML-based 
products  are  expected  to  roll  out  in  the 
next  six  to  eight  months,  mostly  in  Web 
access  management  products,  such  as 
those  from  Oblix  and  Netegrity. 

“TrustBridge  is  a  move  in  the  right  di¬ 


rection  for  Microsoft,  but  it  is  still  over¬ 
looking  interoperability  with  all  those 
organizations  that  will  be  using  SAML,” 
says  Dan  Blum,  an  analyst  with  The 
Burton  Group.  “Microsoft  should  include 
SAML  in  TrustBridge;  these  security  envi¬ 
ronments  should  not  roll  out  as  two  dif¬ 
ferent  worlds." 

Other  observers  concur. 

“They  are  going  to  have  to  support  other 
Web  services  protocols  and  play  with  the 
niche  security  vendors  like  Netegrity," says 
Cate  Quirk,  a  research  ana¬ 
lyst  with  AMR  Research. 

“You  have  to  ask  some 
questions,  like  what  about 


X.509  [digital]  certificates  and 
[public-key  infrastructure],”  says 
Laura  Koetzle,an  analyst  with  For¬ 
rester  Research.  “Microsoft  is  see¬ 
ing  the  world  as  all  Kerberos  and 
Active  Directory.” 

Microsoft  says  WS-Security  will 
evolve  to  support  other  authenti¬ 
cation  services,  often  called  iden¬ 
tity  management,  including  those 
promoted  by  the  40-member  Li¬ 
berty  Alliance  effort  led  by  Sun. 

“It’s  a  crawl,  walk,  run  strategy, 
and  this  is  [the  crawl  part],” says 
Steven  VanRoekel,  director  of  Web 
services  technical  marketing  for 
Microsoft.  He  declines  to  say 
when  the  “walk”  and  “run”  parts  of 
the  strategy  will  emerge  or  how 
the  company  will  price  and  pack¬ 
age  TrustBridge. 

Microsoft  says  TrustBridge  will 
act  as  a  gateway  using  Kerberos  to  speak 
to  Active  Directory  or  a  Kerberos  KDC  ser¬ 
ver  on  an  internal  network  (see  graphic, 
above).  TrustBridge  then  employs  WS- 
Security  to  tuck  Kerberos  tickets  inside 
SOAP  messages  that  can  be  sent  over  the 
Internet  to  other  TrustBridge  nodes  or 
nodes  that  support  WS-Security. 

Currently,  no  software  exists  that  sup¬ 
ports  WS-Security  IBM  announced  last 
month  support  for  WS-Security  in  the  next 
version  of  WebSphere,  due  for  release  in 
the  fall.  Microsoft  plans  to 
release  TrustBridge  some¬ 
time  next  year,  after  it  ships 
Windows.Net  Server  ■ 
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distribution.  Especially  with  customers  in  45  cities  around  the  world. 
Which  is  why  Elisabeth  turned  to  Nortel  Networks™  Meridian  IP-enabled 
solutions  to  integrate  Voice  over  IP  into  her  worldwide  online  customer 
management  system.  Now  she  can  either  IP-enable  her  existing 
Meridian  communications  system,  which  would  leverage  her  existing 
infrastructure  investment,  or  build  a  full  IP  network  by  adding  other  Nortel 

Nortel  Networks  Networks  solutions.  Either  way,  Nortel 

Meridian  IP-enabled  is  Networks  delivers  a  high-performance 
#1  in  IP-PBX  category.  network,  and  her  call  centers  respond 

to  customers  seamlessly.  Plus,  she  gets  carrier-grade  reliability,  advanced 
e-Business  applications  and  simplified  network  management  foi  all 
locations.  And  best  of  all,  Elizabeth's  network  can  cost-effectively  evolve 
into  IP  technology  and  grow  as  her  company  grows.  It’s  just  one  more  way 
Nortel  Networks  is  making  the  Internet  what  you  need  it  to  be.  To  learn 
more,  visit  nortelnetworks.com/voip. 
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Tivoli  touts  Web  services  management 


1 1  Web  services  is  not  going  to 
be  a  revolution.  It  will  be  an 
evolution. .  .We  re  all  a  couple 
of  years  way  from  this.99 


Robert  LeBlanc 

General  manager,  Tivoli 


■  BY  DENISE  DUBIE 

WASHINGTON, D.C.— The  man¬ 
agement  and  security  of  Web  ser¬ 
vices  dominated  talk  at  Tivoli  Sys¬ 
tems’ annual  user  conference  last 
week,  with  the  company  promis¬ 
ing  to  keep  pace  with  this  rapidly 
evolving  technology 

The  525  Planet  Tivoli  attendees 
heard  details  of  how  the  compa¬ 
ny’s  software  currently  manages 
the  JavaBeans  that  make  up 
emerging  Web  services.Tivoli  also 
touted  its  support  for  key  Web  ser¬ 
vices  standards  such  as  Simple 
Object  Access  Protocol  (SOAP), 
and  Universal  Description,  Dis¬ 
covery  and  Integration  (UDDI). 

For  example,  a  relatively  new 
product  announced  in  April,  IBM 
Tivoli  Service  Level  Advisor,  will 
let  network  managers  track  how 
well  a  service  is  delivered  to  end 
users  by  monitoring  all  the  com¬ 
ponents  making  up  the  applica¬ 
tion,  the  company  says.The  prod¬ 


uct  can  pull  data  from  multiple 
sources  and  track  response  times 
across  databases,  Web  and  appli¬ 
cation  servers,  and  other  network 
devices  tied  to  the  service,  it  fol¬ 
lows  the  entire  process  from  user 
request  to  service  delivery  a  pre¬ 
cursor  to  Web  services.Tivoli  says. 

“Tivoli  software  can  manage  the 
beginnings  of  Web  services  with¬ 
in  a  firewall  today  says  Rich  Ptak, 
analyst  at  Ptak  &  Associates.  And 
Tivoli  “is  letting  users  know  that 
when  they  take  that  leap  to  Web 
services,  the  company  will  be 
ready  to  support  them  with  man¬ 
agement  products.” 

In  terms  of  technology  General 
Manager  Robert  LeBlanc  says 
Tivoli  and  IBM  will  work  with  oth¬ 
ers  in  the  industry  to  set  stan¬ 
dards  for  securing  and  managing 
Web  services.  Representatives 
from  both  companies  are  work¬ 
ing  with  security  standards 
groups  to  help  the  industry  reach 
common  ground  sooner, because 


he  says  “security  is  the  No.  1  issue 
for  users”  when  it  comes  to  Web 
services  that  extend  outside  a 
corporate  firewall.  Second  to 
security  is  management. 

“Web  services  is  not  going  to  be 
a  revolution.  It  will  be  an  evolu¬ 
tion.”  LeBlanc  says.“The  definition 
will  grow  and  become  more  lay¬ 
ered  over  time,  just  as  TCP/IP  did, 
and  users  and  vendors  will  first 
understand  and  then  deploy. 
We’re  all  a  couple  of  years  away 


from  this.” 

One  Tivoli  customer  says  while 
the  idea  of  Web  services  has 
merit,  he  also  can  see  obstacles. 

“The  vendors  will  have  to  make 
all  their  stuff  talk  to  each  other 
after  the  standards  groups  define 
a  standard,”  says  Steven  Krapes,  a 
technical  manager  for  AT&T 
Labs.“But  even  then  the  standard 
will  be  totally  useless  unless  ven¬ 
dors  make  their  Web  services 
products  exactly  the  same.”  ■ 


Big  Blue  takes  WebSphere  vertical 

Application-integration  middleware  for  five  industries  on  tap  from  IBM. 


The  importance  of  enterprise  integration  varies  among 
1,096  respondents  to  a  survey  conducted  by  IDC. 
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Mandatory  for  mission-critical 

activities:  30.1% 


Key  enabler 
for  business- 
critical 
activities: 

50.7% 
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Needed  for  some  business  activities: 

15.7% 

Useful,  but  not  necessary  for  our 
business  activities:  3% 


Not  required  at  all:  .5% 


■  BY  ANN  BEDNARZ 

SOMERS,  N.Y  —  IBM  is  continu¬ 
ing  its  full-court  application-inte¬ 
gration  press, this  time  with  a  roster 
of  industry-specific  WebSphere 
suites  that  are  aimed  at  making  ap¬ 
plication-integration  projects  less 
complex  and  time-consuming  for 
businesses. 

The  new  offerings,  due  out  next 
quarter,  build  on  IBM’s  Web¬ 
Sphere  Businass  Integration  suite 
and  add  extensions  tailored  ini¬ 
tially  for  companies  in  five  indus¬ 
tries:  automotive,  electronics,  in¬ 
surance,  retail/distribution  and 
telecommunications. 

IBM  will  announce  the  vertical 
application  suites  this  week.The  news  follows 
a  series  of  announcements  IBM  made  last 
month  about  plans  to  unify  its  extended  Web¬ 
Sphere  software  family  including  its  MQ  mes¬ 
sage-oriented  middleware,  application  server 
and  portal  lines. 

The  forthcoming  Business  Integration  suites 
feature  software  for  connecting  third-party 
software  and  prebuilt,  industry-specific  busi¬ 
ness  process  templates,  which  IBM  calls  col¬ 
laborations  The  templates  describe  how  com¬ 
mon  business  processes  —  crossing  multiple 
applications  and  systems  —  might  be  accom¬ 
plished.  For  example,  a  template  in  the  insur¬ 
ance  suite  addresses  how  a  medical  claim 
passes  from  a  hospital  to  an  insurance  pro¬ 
vider.  And  a  retail  template  for  item  manage¬ 
ment  lays  out  how  retailers  can  exchange 


item  data  with  trading  partners  in  accordance 
with  Uniform  Code  Council  standards. 

For  customers,  one  advantage  of  having 
bundled  industry-specific  templates  is  ease  of 
deployment.  IT  departments  want  products 
that  more  closely  match  the  business  problem 
they’re  trying  to  solve,  says  Tyler  McDaniel, 
director  of  application  strategies  at  Hurwitz 
Group.  The  closer  the  match,  the  less  a  com¬ 
pany  needs  to  rely  on  a  third-party  consultant 
for  customization  services,  he  says. 

IBM  is  not  the  first  integration  middleware 
vendor  to  announce  vertical  packages.  Vitria 
in  February  unveiled  four  industry-centric 
products,  called  Vitria  Collaborative  Appli¬ 
cations,  for  healthcare,  financial  services,  utili¬ 
ties  and  manufacturing. 

And  Tibco  Software  in  March  announced 


plans  to  add  industry-specific  bus¬ 
iness  processes  to  its  core  Bus- 
inessWorks  and  ActiveEnterprise 
suites.  Tibco’s  products  target  the 
financial  services  and  utilities 
industries, along  with  manufactur¬ 
ing,  through  a  partnership  with 
systems  integrator  and  software 
maker  Sierra  Atlantic;  and  oil  and 
gas,  through  a  partnership  with  IT 
consulting  firm  ZettaWorks. 

In  addition  to  the  vertical  exten¬ 
sions,  WebSphere  Business  Inte¬ 
gration  suites  include  WebSphere 
MQ  Integrator  Broker,  which  pro¬ 
vides  the  messaging  infrastruc¬ 
ture;  MQSeries  WorkFlow,  which 
includes  tools  for  creating  cus¬ 
tom  business  process  templates; 
and  IBM  CrossWorlds  Interchange  Server, 
which  provides  the  prepackaged  process 
templates. 

The  software  operates  on  IBM  A1X,  Micro¬ 
soft  Windows  2000  and  Sun  Solaris.  Pricing 
starts  at  $62,000;  a  typical  large  enterprise 
deployment  can  cost  in  the  $500,000  range, 
IBM  says.B 


Correction 


■  The  story  “Z-Tel  gets  an  edge  with 
SnowShore  media  server"  (June  3,  page  42) 
should  have  listed  the  company's  full  name  as 
Proficient  Systems. 
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you're  not  prepared  for  one.  It's  a  lesson  you 
don't  want  to  learn  the  hard  way.  Then 
again,  it's  not  every  day  that  a  serious 
hurricane  makes  landfall  at  your  data 
center.  But  after  being  forced  to  brave 
the  fury  delivered  by  "the  storm  of  the 
century"  in  order  to  prevent  total  loss 
of  mission  critical  data— the  folks  at 
the  IT  service  center  of  Mitsubishi 
Chemical  America,  Inc.  knew  they 
needed  a  backup  plan. 

They  turned  to  HP.  Rather  than 
recommend  a  totally  redundant  backup 
data  center  in  another  location,  HP 
worked  with  MCA  on  a  more  creative 
solution  involving  HP  servers,  storage, 
software  and  support  services. 

Together,  they  developed  a  plan 
that  not  only  involved  on-site  recovery 
services  but  actually  utilized  HP's  own 
disaster  recovery  center.  HP  even 
helped  MCA  through  several  disaster 
recovery  rehearsals— just  to  make  sure 
there  would  be  no  surprises  next  time 
the  unthinkable  happened. 

HP  infrastructure  solutions  are 
engineered  for  the  real  world  of 
business.  Because  the  last  time  we 
checked,  that's  where  we  all  work. 
Call  1.800.HPASKME,  ext.  246.  Or  visit 
www.hp.com/go/infrastructure. 

Infrastructure:  it  starts  with  you. 
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Grid  computing  hits  security  gridlock 


■  BY  DENI  CONNOR 

Doubts  about  the  security  of 
grid  computing  —  serious 
enough  to  stifle  adoption  —  are 
being  addressed  head-on  by  Sun 
and  the  Global  Grid  Forum. 

Sun  last  week  introduced  Grid 
Engine,  Enterprise  Edition  5.3, soft¬ 
ware  that  lets  IT  managers  build 
grid  nets  within  an  organization 
and  control  policies  and  service- 
level  agreements  (SLA). 


Conference 

continued  from  page  1 

revenue,”  said  Gartner  analyst 
Jane  Disbrow,  whose  focus  is  on 
enterprise  resource  planning 
(ERP)  software,  which  is  often  a 
multimillion-dollar  purchase.  She 
noted  that  only  Oracle  published 
ERP  prices  openly 

In  the  tough  economic  climate, 
vendors  are  aggressively  pushing 
“all-you-can-eat  deals"  in  which 
corporations  buy  every  suite  the 
vendor  has  at  a  “discount,”  al¬ 
though  the  software  might  sit  on 
the  shelf  while  support  costs  sky¬ 
rocket,  Disbrow  said.  While  there 
seems  to  be  a  discount  for  the  ini¬ 
tial  license,  the  complex  contract 
terms  are  leading  to  higher  annu¬ 
al  maintenance  costs  that  pur¬ 
chasers  are  expected  to  pay  over 
the  life  of  the  contract  for  use  of 
the  software. 

“A  few  years  ago  the  mainte¬ 
nance  averaged  1 7%  of  the  initial 
license,  but  now  it’s  20%  and  ris¬ 
ing  to  2 1 .3%,”  Disbrow  said.  Ven¬ 
dors  are  coming  up  with  new 
elaborate  pricing  models  based 
on  business  metrics,  such  as 
charges  based  on  a  percentage  of 
the  corporate  revenue  or  “role- 
based”  usage  where  there’s  no 
clear  definition  in  the  contract  of 
what  the  term  really  means.These 
types  of  tactics  were  observed 
with  FteopleSoft,  Oracle  and  SAP 
she  noted.  Gartner  analysts  rec¬ 
ommend  that  corporations  keep 
their  cards  close  to  their  vest  and 
reveal  as  little  as  possible  about 
their  IT  budgets  when  negotiating 
with  any  vendor. 

According  to  a  Gartner  survey 
of  600  companies,  many  corpora¬ 
tions  appear  to  be  spending  more 
on  IT  as  a  percentage  of  their  cor¬ 
porate  revenue.  Banks,  the  biggest 
investors  in  IT  per  industry,  last 
year  spent  an  average  13.5%  of 
their  revenue  on  IT  assets.  And 
ERP  spending  as  a  percentage  of 
the  IT  budget,  according  to 


GGpa  standards-setting  body,  re¬ 
cently  made  proposals  that  ex¬ 
tend  the  X.509  public-key  infra¬ 
structure  and  attempt  to  resolve 
problems  between  companies 
that  use  separate  authentication 
mechanisms  and  policies. 

Sun  says  adoption  of  global 
grids,  where  companies  share 
hardware  and  software  re¬ 
sources  to  accomplish  a  compu¬ 
tational  goal,  has  been  slowed 
because  of  security  concerns 


Getting  the  best  deal 

At  a  Gartner  conference  last 
week,  more  than  700  IT  man¬ 
agers  shared  ideas  on  keeping 
costs  down  on  software  and 
hardware  licensing. 

•  Do  a  competitive  request-for- 
proposal  whenever  possible. 

•  Be  prepared  with  a  complete 
IT  assets  list  compiled  jointly 
by  IT,  finance  and  human 
resources. 

•  Resist  the  lure  of  low  initial 
licensing  fees  with  overly 
complex  maintenance  terms. 

•  Plan  for  costs  associated 
with  equipment  "retirement.” 

Gartner,  hovers  at  25%  for  most 
industries,  with  wholesale  dis¬ 
tributors  spending  more  than 
40%. 

“We’re  spending  $50  million  to 
$100  million  in  the  next  few  years 
on  ERP  projects  for  the  300  hos¬ 
pitals  we  support,”  said  Steve  Fox, 
assistant  vice  president  of  IS  at 
healthcare  giant  HCA. 

IT  managers  have  to  prepare  to 
negotiate  hard  so  they  don’t  see 
their  real  costs  doubling  over  the 
course  of  a  three-  or  five-year  con¬ 
tract  because  of  maintenance 
fees,  Disbrow  said.  There  should 
be  clauses  in  contracts  to  assure 
predictable  costs  when  the  num¬ 
ber  of  employees  rises  or  falls. 

In  what  Disbrow  called  “revenue 
mining,”  vendors  are  trying  to 
hook  buyers  into  contracts  where 
software  costs  are  linked  to  the 
consumer  price  index  each  year 
—  which  to  them  might  mean  a 
periodic  8%  or  12%  boost  in  price. 

When  software  prices  are  pub¬ 
lished,  these  might  only  be  a  start¬ 
ing  point  for  negotiations.  Micro¬ 
soft’s  four-tier  pricing  for  Micro¬ 
soft  Office  offers  45%  off  of  the 
$479  retail  price.  But  Gartner  ana¬ 
lyst  Alvin  Park  said  he’s  seen  large 
organizations  get  a  10%  discount 


and  a  lack  of  standards. 

“It  can  be  illustrated  by  one 
question:  If  you  were  the  CEO  of  a 
big  company,  would  you  be  com¬ 
fortable  sending  your  intellectual 
property  across  the  Internet  to  a 
third  party  who  might  be  working 
with  your  competition?”  asks 
Peter  Jeffcock,  a  Sun  product 
manager.  “Right  now,  the  security 
and  bandwidth  issues  ...  are  not 
in  place  to  the  extent  that  most 
organizations  are  prepared  to  do 


and  more  below  that.  An  IT 
administrator  for  a  Catholic 
school  in  Pennsylvania,  who 
asked  to  remain  anonymous,  said 
she  was  paying  $50. 

Much  of  the  difficulty  in  manag¬ 
ing  IT  assets  is  just  getting  a  han¬ 
dle  on  the  hardware  and  software 
that’s  owned  or  leased. 

In  a  candid  presentation,  Motor¬ 
ola’s  corporate  vice  president  for 
IT  strategy  and  architecture,  Toby 
Redshaw,  said  Motorola  is  clean¬ 
ing  up  the  excess  of  software, 
hardware  and  data  centers  it 
accumulated  in  the  go-go  years  of 
the  1990s. 

“I  have  one  business  unit  with 
25,000  applications  that  we  know 
of,”  Redshaw  said.  “Of  course,  the 
financial  people  are  very  upset 
about  this.” 

Redshaw  estimates  Motorola 
has  between  10,000  to  20,000 
servers  and  1 73  data  centers.  With 
help  from  the  finance  depart¬ 
ment,  which  Redshaw  sees  as  crit¬ 
ical,  Motorola  intends  to  lower  its 
spending  by  20%  to  30%  over  the 
next  five  years.  Redshaw  also  is 
counting  on  Web  services  to  play 
a  key  role  in  connecting  with 
Motorola’s  1,500  suppliers. 

There  are  plenty  of  auto-discov¬ 
ery  tools  to  find  the  long-forgot¬ 
ten  desktops  and  servers,  includ¬ 
ing  tools  from  Microsoft,  Network 
Associates,  Peregrine  and  Bind- 
View.  But  in  the  separate  category 
of  IT  asset  management  software, 
which  are  complex  data  reposito¬ 
ries  developed  by  at  least  a  dozen 
vendors,  Gartner  doesn’t  recom¬ 
mend  any  particular  one. 

“We  recommend  you  build  your 
own  if  you  have  the  skills  and 
financial  resources,”  said  Gartner 
analyst  Patricia  Adams,  mainly  be¬ 
cause  the  financial  stability  of 
many  IT  asset  management  ven¬ 
dors  in  this  segment  is  so  shaky.  ■ 
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that  on  a  production  basis.” 

At  least  one  user  involved  in 
grid  development  understands 
the  problem  of  intercompany 
and  private  grids. 

“We’ve  been  using  Sun’s  Grid 
Engine  within  the  Supercomputer 
Center.so  a  lot  of  our  systems  have 
had  the  luxury  of  having  com¬ 
mon  name  spaces,”  says  Eric 
Stahlberg,  senior  systems  man¬ 
ager  at  the  Ohio  Supercomputing 
Center  in  Columbus.  “When  we 
have  had  to  work  with  other  orga¬ 
nizations,  we  have  been  in  an  ex¬ 
ploratory  research  level.” 

Stahlberg  says  that  although  he 
used  tools  from  the  Globus  Pro¬ 
ject,  a  research  and  development 
effort  focused  on  grid  computing, 
other  tools  that  map  a  company’s 
security  or  policy-setting  means 
to  another’s  aren’t  there. “As  far  as 
heterogeneous  grid  computing 
goes,  it  is  a  gray  area  where  things 
are  ill-defined,”  he  says. 

Sun  introduced  its  Grid  En¬ 
gine  software  nearly  two  years 
ago  when  it  acquired  GridWare. 
Grid  Engine  is  used  for  building 
intercompany,  and  internal,  pri¬ 
vate  grids. 

With  Grid  Engine,  Enterprise 
Edition,  Sun  avoids  the  security 
issues  associated  with  external 
grids.  The  company  has  added  a 
policy  manager  that  can  control 
SLAs.  Sun  says  the  software  is  for 
use  within  corporate  firewalls, 
where  departments  likely  use  the 
same  security  policies  and  SLAs. 

“We  set  up  a  policy  within  the 
Sun  software  that  says  this  [de¬ 
partment]  has  access  to  the  ma¬ 
chines  for  this  amount  of  time 
during  the  day  or  calendar  per¬ 
iod,”  says  Tom  Kerr,  a  software  de¬ 
velopment  director  at  Synopsys 
in  Mountain  View,  Calif. 

Synopsys  has  grids  running 
Unix  and  Linux,  the  largest  of 
which  consists  of  200  Linux 
servers  and  workstations. 

Meanwhile,  members  of  the 
GGF  Security  Working  Group 
(GGFSWG)  are  attacking  the 
problem  of  interorganization  se¬ 
curity  that  Sun  says  concern  its 
customers. 

Steve  Tuecke,  software  architect 
at  Argonne  National  Laboratories 
in  Darien,  Ill.,  and  co-chair  on  the 
GGFSWG,  says  that  some  organi¬ 
zations  might  use  Kerberos,  while 
others  might  have  Unix  logons, 
home-grown  policies  or  schedul¬ 
ing  systems  from  Platform  Com¬ 
puting  or  Sun. 

Tuecke,  along  with  others  in¬ 
volved  in  the  GGphave  submitted 


drafts  to  the  Internet  Engineering 
Task  Force  (IETF)  and  GGF  in  an 
attempt  to  solve  these  problems. 

Standardization  of  some  of  the 
GGF  proposals  is  expected  in  as 
little  as  six  months. 

“We  are  identifying  and  modify¬ 
ing  existing  security  solutions, 
such  as  Kerberos,  to  better  facili¬ 
tate  cross-organization  opera¬ 
tion,”  says  Marty  Humphrey,  re¬ 
search  professor  at  the  University 
of  Virginia  in  Charlottesville,  and 
co-chair  of  the  GGFSWGCWe  are 
also  creating  new  technologies 
such  as  [Globus’]  Global  Security 
Infrastructure  [GSI]  within  the 
GGF  that  build  on  and  define 
new,  standardized  approaches  for 
security’ 

GSI  provides  for  secure  commu¬ 
nication  and  single-sign  on  be¬ 
tween  grid  participants,  but 
avoids  a  centrally  managed  secu¬ 
rity  system. 

The  GGF  points  to  policies  and 
SLAs  as  sticking  points  for  build¬ 
ing  grids  between  organizations. 

“The  harder  issue  is  how  one 
deals  with  policy  —  organizations 
might  want  to  impose  different 
policies  on  who  can  access  their 
resources,"  says  Clifford  Neuman, 
senior  research  architect  at  the 
University  of  Southern  California 
and  co-author  of  a  grid  security 
draft  to  the  IETF.  “Ultimately  it  is 
the  owner  of  the  resource  that  has 
to  make  such  a  decision,  but  this 
means  you  might  have  a  compu¬ 
tation  running  across  machines  in 
different  domains,  enforcing  dif¬ 
ferent  policies.” 

Sun  Grid  Engine,  Enterprise 
Edition  costs  from  $20,000  for  up 
to  50  CPUs  to  $80,000  for  up  to 
2,000  CPUs.  ■ 
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■  THIS  WEEK'S  QUESTION: 

What’s  the  name  of  the 
proposed  uniform  version 
of  Linux  being  pushed  by 
a  new  alliance  consisting 
of  Caldera,  SuSE.Turbo- 
linux  and  Conectiva? 

Answer  this  and  nine  ackftional  questions 
online  and  you  could  win  $500!  Visit 

Network  World  Fosmm  and  enter  2349 
in  the  Search  ^ox. 

www.nwfusion.com 


It’s  not  about  whether  you’re 

connected  or  how,  but  to  wha 


•  degree 


Welcome  to  oni 


Welcome  to  business  with  .NET.  Another  day  of  business 
means  another  day  of  relentless  change.  As  an  IT  professional, 
you’re  charged  with  connecting  your  systems,  applications, 
and  people  in  a  way  that  delivers  the  flexibility  and  agility 
your  enterprise  needs  to  meet  the  pace  and  scale  of  change. 
At  the  same  time,  you’re  expected  to  do  more  with  less. 

Yet,  most  applications  and  databases  don’t  talk  to  each 
other  and  your  data  sits  locked  in  rigid,  proprietary  systems. 

What  you  need  is  a  way  to  extend  your  infrastructure 
that  can  compress  the  time  and  space  between  people  and 
information,  leaving  just  one  degree  of  separation.  That's 
business  with  .NET  connected  software  from  Microsoft. 


Microsoft  is  a  member  of  the  Web  Services  Interoperability 
Organization,  an  open  industry  effort  to  promote  Web  services 
interoperability  across  platforms,  applications,  and  programming 
languages.  To  learn  more  about  WS-I,  its  mem¬ 
bers,  and  its  implementation  tools,  visit  ws-i.org 


WSH 


degree  of  separation 


XML  Web  services  will  take  you  there.  The  next 
evolution  of  business  on  the  Web  is  here.  XML  Web  services 
offer  programmable  and  reusable  technologies  that  leverage 
the  flexibility  of  the  Internet.  Now  you  can  have  constellations 
of  connected  applications  running  on  multiple  platforms 
delivering  information  to  all  your  customers,  businesses,  and 
employees.  And  the  best  way  to  build  and  deploy  XML  Web 
services  is  with  .NET  connected  software  from  Microsoft. 

.NET  connected  software  ties  it  all  together. 

XML  Web  services  are  based  on  a  set  of  common  open 
standards  including  XML,  SOAP,  WSDL,  and  UDDI,  as  defined 
by  the  World  Wide  Web  Consortium  (W3C).  Working  with 
Microsoft®  .NET  connected  software  means  using  industry- 
standard  protocols  that  unify  your  legacy  code,  systems,  and 
applications  and  unlock  their  value.  Finally,  your  enterprise 
can  act  as  a  single  interoperable  whole. 

Delivering  a  clear  path  from  code  to  client. 

Many  promise  a  path  to  XML  Web  services,  but  only  .NET 


connected  software  from  Microsoft  offers  you  a  complete 
set  of  tools,  servers,  and  applications  for  transforming  your 
business  using  your  existing  infrastructure.  One  software 
solution  takes  you  all  the  way  from  code  to  client. 

“If  one  word  best  represents  the  past  year's  most  significant  news 
story  in  software  development,  it  would  be  .NET.  If  you  were  to 
lookjor  two  words,  they  would  be  ‘Web  services.’” 

— SD  Times,  “ Web  Services,  .NET Highlight  2001,''  Alan  Zeichick,  1/1/2002 


All  you  need  to  create  and  use  XML  Web  services: 

•Microsoft  Visual  Studio® .NET  and  the  .NET 
Framework— the  tools  to  build  them 

•The  Microsoft  Windows®  Server  Family— the 
platform  on  which  to  run  them 

•.NET  Enterprise  Servers— the  application  servers 
to  deploy  them 

•Microsoft  Office  XP  and  the  Office  XP  Toolkit— the 
applications  in  which  to  experience  them 
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pipe  dream  and  pipeline. 


Where  your  CEO’s  vision  meets  IT  reality.  It's  one 
thing  to  map  out  the  future.  It’s  quite  another  to  unlock  the 
value  in  your  infrastructure  that  will  get  you  there.  Fortunately, 
XML  Web  services  built  with  .NET  connected  software  make 
it  a  lot  easier  to  connect  the  code  and  systems  you  already 
have  to  each  other— and  to  the  new  stuff  you  need. 

You  don’t  rip  out  or  replace  legacy  systems.  But  you  do  bring 
new  capabilities  and  flexibility  to  your  existing  systems  that 
allow  you  to  leverage  your  investments  far  into  the  future. 

Your  code  and  systems  are  completely  connected. 

For  example,  rich  customer  data  may  currently  exist  in  multiple 
databases  and  applications,  requiring  your  sales  organization  to 
access  multiple  sources  to  build  an  account  profile.  By  using  XML 
Web  services,  you  can  unlock  that  data  and  make  it  available 
through  a  single  portal  targeting  multiple  clients,  such  as  laptops 
or  handheld  devices.  To  find  out  how  Microsoft  achieved  this  in 
100  days  for  its  own  sales  force,  visit  microsoft.com/enterprise 


How  Trans  World  Entertainment  cued  up  a  new  consumer 

brand  in  just  six  weeks.  Using  .NET  connected  software,  they 
are  connecting  their  650  FYE  retail  music  and  video  stores  in  46 
states;  25,000  in-store  listening  and  viewing  stations  to  servers 
housing  200,000  audio  tracks  and  10,000  movie  trailers;  and 
their  Web  customers  to  personalized  content  at  FYE.com. 


Data  Feed  Product  Inventory 

Catalog  System 

Oracle  AS/400 


New  Apps 

XML  Web  services 


Customers 

Windows  XP,  CE 


Data  Centers 

.NET  Framework,  IIS  5.0 

. H 


Retail  Stores 

Windows  2000,  Windows  NT 


“.NET  has  enabled  us  to  achieve  widespread  brand  distribution 
across  a  broad  range  of  touch  points.” 

—Mark  Hogan,  VP  of  Marketing,  Trans  World  Entertainment 
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fences  and  freedom. 


Your  isolated  data  becomes  shared  intelligence. 

Today,  much  of  your  data  sits  locked  away  in  proprietary 
systems.  .NET  connected  software  helps  you  open  the 
gate.  You  have  a  common  language  for  integrating  data 
and  applications,  so  information  flows  across  intranets  and 
extranets  to  those  who  need  it. 

"We’ve  already  seen  significant  incremental  revenues  and 

expect  the  trend  to  continue  as  we  leverage  the  .NET  platform 

to  strengthen  and  extend  our  business  modeL" 

—Peter  Osbourne,  Group  Manager,  Advanced  Technology  Group,  Dollar  Rent  A  Car 

The  result  is  a  far  more  flexible  infrastructure  — one 
that  reduces  the  separation  between  the  elements  of  your 
business  to  just  one  degree.  By  connecting  your  customers, 
business  partners,  and  employees  directly  to  the  intelligence 
they  need,  you  streamline  operations  and  make  your  business 
more  agile,  responsive,  and  productive. 


Connecting  your  data  to  your  customers.  .NET  connected 
software  lets  you  build  flexible,  seamless  connections  between 
your  back-end  data  and  front-end  systems.  This  allows  you  to 
close  the  loop  with  your  customers,  deliver  more  relevant  content, 
and  build  more  dynamic  relationships. 


Connecting  business  partners  to  you  and  to  each  other. 
.NET  connected  software  helps  you  first  integrate  your  own 
applications,  and  then  quickly  and  cost-effectively  integrate 
your  systems  with  those  of  your  business  partners,  vendors, 
and  suppliers. 


Connecting  your  employees  to  business  intelligence. 
.NET  connected  software  makes  it  much  easier  to  let  employees 
unlock  the  information  value  stored  in  your  infrastructure.  Not 
only  will  they  have  access,  they  can  also  begin  using  powerful 
analytical  tools  to  empower  themselves  and  others. 


One  degree  between  you  and 

your  customers 


►  ROYAL  CANADIAN  MINT 


Solution:  Microsoft  Windows  2000  Advanced  Server  •  Microsoft  SQL 
Server”  2000  Enterprise  Edition  •  Microsoft  Commerce  Server  2000 
•  Microsoft  Content  Management  Server  2001  •  BizTalk  Server  2000 


►  DOLLAR  RENTACAR 


SOAP  Quick 

Processor  Keys 


Partner 


C3 

Dollar 

tn 

Dollar 

i  XML  Web  Services 

ACMS 

Windows  2000 


VMS 


Solution:  Windows  2000  Server  •  Microsoft  Internet  Information 
Services  5.0  •  SQL  Server  2000  •  BizTalk  Server  2000  •  VisualStudio.NET 
•  Microsoft  Mobile  Internet  Toolkit 


►  COMPUSA 

Full  Desktop  Client 


Solution:  Windows  2000  Advanced  Server  •  SQL  Server  2000  with 
Analysis  Services  •  ProClarity  reporting  client  for  store  managers  and 
corporate  staff  •  MATRA  Systems  solution  for  importing  data  from 
IBM  POS  systems  into  SQL  Server 


CUSTOMER  SOLUTIONS  ^ 


How  Royal  Canadian  Mint  used  .NET  connected  software  to  create  new  revenue  streams.  Founded  in  1908, 
the  Royal  Canadian  Mint  was  looking  for  new  and  better  ways  to  reach  out  to  customers  for  its  evolving  catalog  of  precious 
metal  collector  coins  and  jewelry.  With  .NET  connected  software  they  were  able  to  create  a  next-generation  e-commerce  site  that 
delivered  dynamic  content  management,  personalization,  and  advanced  business  analytics  while  drawing  on  information  in  a 
legacy  database  and  feeding  orders  through  an  existing  ERP  system.  Microsoft  BizTalk®  Server  2000,  with  native  XML  support, 
integrated  the  data  seamlessly  for  smoother  transactions  and  more  efficient  order  processing.  To  see  a  webcast  on  redefining 
the  online  enterprise,  visit  microsoft.com/solutions/msib 


How  Dollar  Rent  A  Car  used  .NET  connected  software  to  drive  new  business  partnerships.  Dollar  Rent  A  Car 
is  a  world-leading  car  rental  agency,  with  a  fleet  of  75,000  cars  and  more  than  250  locations  across  26  countries.  They 
saw  that  integrating  their  VMS-based  reservation  system  directly  with  partners  would  drive  sales  and  reduce  the  cost  of 
transactions.  Using  .NET  connected  software  and  BizTalk  Server,  they  were  able  to  develop  an  XML-based  trading  partner 
integration  solution  in  weeks  rather  than  months— a  75  percent  reduction  in  development  time.  The  same  solution  also  helped 
Dollar  to  significantly  reduce  transaction  costs  with  its  partners.  To  get  a  resource  and  evaluation  kit  for  this  case  study,  go  to 
microsoft.com/business/casestudies/b2c/dollarrentacar.asp 


How  CompUSA  used  .NET  connected  software  to  accelerate  business  intelligence.  CompUSA  had  228 
retail  stores,  a  services  division,  corporate  sales,  and  a  training  division.  Moving  forward,  they  wanted  to  maximize  the 
value  of  customer  and  sales  data  stored  on  a  reporting  system  on  an  AS/400;  an  SAP  system  running  on  SQL  Server  2000; 
Oracle  databases;  and  several  custom  solutions.  Using  .NET  connected  software,  CompUSA  was  able  to  extract  their 
POS  data  and  consolidate  it  in  a  central  data  warehouse  where  it  can  be  analyzed  in  near-real  time.  So,  store  managers 
can  see  what  adjustments  are  needed  to  meet  opportunities  as  they  arise.  To  see  a  video  report  on  this  story,  go  to 
microsoft.com/SERVERS/evaluation/casestudies/compusa.asp 


SERVICES  &  PARTNERS  ^ 


solo  and  symphony. 


Call  on  over  1  million  partners  to  make  it  work. 

When  the  future  of  your  enterprise  is  at  stake,  it’s  good 
to  have  help.  Not  to  worry.  Work  with  Microsoft.NET  con¬ 
nected  software  and  you’ll  be  accompanied  by  some  of  the 
world’s  leading  technology  consultants,  developers,  and 
services  organizations. 

You  can  develop  in-house,  or  work  with  Microsoft  Consulting 
Services.  And  once  you’ve  deployed  your  solutions,  Microsoft 
Premier  Support  can  help  you  maintain  them. 


You  also  have  the  option  of  calling  on 

Microsoft 

certified  over  24,000  organizations  and  1  million 
experts  trained  as  Microsoft  certified 
professionals  who  will  be  there  to  help  you  design,  build, 
deploy,  and  maintain  Microsoft-based  solutions  for  your 


enterprise.  With  so  much  support  behind  .NET,  you  have 
the  flexibility  of  choice.  No  matter  what  industry  you’re  in, 
there  are  qualified  partners  who  can  create  custom  solu¬ 
tions  that  fit  your  need  for  integration,  efficiency,  reliability, 
and  scalability. 

Whichever  route  you  choose,  Microsoft  offers  guidance 
in  the  form  of  standardized  methodologies  for  developing 
and  deploying  solutions.  To  learn  about  your  support  options, 
visit  microsoft.com/enterpriseservices 


Microsoft  has  alliances  with  the  largest  services  organiza¬ 
tions  in  the  world— including  Accenture,  Avanade,  Cap  Gemini 
Ernst  &  Young,  Compaq  Global  Services,  Dell,  EDS,  KPMG 
Consulting,  Unisys,  and  more— to  provide  Fortune  1000  companies 
with  complete  enterprise-class  solutions. 


between  you  and 
.NET  connected  software. 

With  Microsoft  .NET  connected  software,  you  can  close  the  gaps  in 
your  infrastructure,  leaving  only  one  degree  of  separation  between 
the  critical  aspects  of  your  business.  For  more  information  about 
the  tools  you  need  to  build  XML  Web  services,  the  servers  you  need 
to  deploy  them,  and  the  services  you  need  to  make  them  work,  visit 
microsoft.com/enterprise  Software  for  the  Agile  Business. 


Microsoft 


©  2002  Microsoft  Corporation.  All  rights  reserved.  Microsoft,  BizTalk.  Visual  Studio,  Windows,  and  Windows  NT  are  either  registered  trademarks  or  trademarks  of  Microsoft  Corporation  in  the  United  States  and/or  other  countries.  The  names  of  actual  companies 
and  products  mentioned  herein  may  be  the  trademarks  of  their  respective  owners.  KPMG  Consulting.  Inc.  is  an  independent  consulting  company. 
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pentium®/// 


The  next  generation  of  hp  ProLiant  technologies: 

A  better  way  to  make  your  business  move  faster. 

Today's  I.T.  infrastructure  eats  up  a  lot  of  things:  People.  Money.  Time.  But 
those  vital  resources  can  all  be  maximized  with  an  infrastructure  that  adapts 
more  quickly  to  change.  And  ProLiant  server  technologies  can  make  that 
adaptive  infrastructure  a  reality. 

The  next  generation  of  ultra-dense  ProLiant  BL  Series  servers  with  Intel’5 
Pentium®  III  processors  makes  deployment  a  simple  matter  of  unpacking, 
plugging  in,  and  clicking  a  mouse.  So  it  happens  in  minutes,  instead  of  tying 
up  your  key  people  for  days.  And  with  ProLiant  Essentials  Rapid  Deployment 
software,  an  O/S  or  application  upgrade  can  now  be  downloaded  to  all 
servers  companywide  by  one  person.  It's  faster,  more  flexible  technology  that 
will  speed  up  your  whole  business.  Our  people  can  show  you  how. 


For  more  information  and  a  White  Paper, 
call  1-800-282-6672,  press  5  and  mention 
code  TGV  or  visit  www.hp.com/solutions/ai 


invent 
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m  TCP/IP,  LAN/WAN  SWITCHES 

■  ROUTERS  ■  HUBS 

■  ACCESS  DEVICES  ■  CLIENTS 

■  SERVERS  ■  OPERATING  SYSTEMS 

■  VPNS  ■  NETWORKED  STORAGE 


Engineering  a  VoIP  swap 

Energy  company  makes  a  move  from  3Com  to  Alcatel  IP  telephony  gear. 


■  Dell  recently  acquired  Plural  to 
boost  its  services  businesses.  Dell 
has  said  in  the  past  that  it  would 
make  a  number  of  small  acquisi¬ 
tions  to  fill  holes  in  its  enterprise 
business  offerings.  Plural  special¬ 
izes  in  Windows  NT-  and  2000-based 
e-commerce  services  and  consult¬ 
ing,  and  is  expected  to  help  Dell 
develop  a  larger  professional  ser¬ 
vices  area. 

Meanwhile,  Dell  is  expected  to 
announce  this  week  the  latest  prod¬ 
uct  in  its  partnership  with  EMC  to 
resell  EMC  storage  arrays.  The 
company  will  announce  Power- 
Vault  750N/755N  on  Dell/EMC,  an 
architecture  that  connects  Dell's 
network-attached  storage  servers 
with  individual  EMC  Fibre  Channel 
arrays,  direct-attached  parallel 
SCSI  storage  or  Fibre  Channel  stor¬ 
age-area  networks.  The  combination 
is  aimed  at  businesses  that  want  to 
use  Fibre  Channel  equipment  and 
eventually  migrate  to  a  SAN  or  busi¬ 
nesses  with  users  who  want  their 
SANs  to  be  accessed  from  the  net¬ 
work.  Pricing  varies  according  to 
hardware  configuration,  www.dell 
.com 

■  NetMotion  Wireless  this  week 
will  release  an  update  to  its  Mo¬ 
bility  wireless  connectivity  and 
security  software,  adding  the  ability 
to  automatically  switch  users  to  the 
most  reliable  wireless  network 
available  to  them,  boost  the  encryp¬ 
tion  used  in  the  software  and  add 
support  for  Nortel’s  Contivity  VPN 
devices.  Mobility  3.51  is  a  client- 
server  product  designed  for  Win¬ 
dows  PCs  and  Pocket  PC  handhelds 
that  lets  users  maintain  connec¬ 
tions  to  their  applications  while 
roaming  across  networks  and  sub¬ 
nets,  and  ensures  continuity  of  their 
wireless  service  across  a  range  of 
IP  networks. 

NetMotion  Mobility  server  runs  on 
Windows  NT  and  2000,  and  the  client 
runs  on  all  Windows  versions,  includ¬ 
ing  CE,  Pocket  PC  and  Pocket  PC 
2002.  The  software  will  cost  $6,000 
for  10  users,  www.netmotion.com 


■  BY  PHIL  HOCHMUTH 

WINDSOR,  COLO.  —  Call  it  a  neck-saving 
move. 

Manufacturing  firm  Encorp  recently 
swapped  its  aging,  overworked  3Com  IP 
PBX  for  Alcatel’s  OmniPCX4400  IP  PBX. 
With  the  100-user  NBX  phone  system 
pushed  to  its  limits,  Encorp  IT  director  Stan 
Seago  says,  “We  were  overloading  the  sys¬ 
tem.  Once  we  started  getting  to  a  saturation 
point,  voice  calls  started  digitizing  and 
you’d  lose  parts  of  words.” 

As  a  result,  “a  couple  of  vice  presidents 
were  no  longer  getting  through  to  our  ven¬ 
ture  capitalists  and  key  customers  —  so  my 
neck  was  on  the  line,”  he  says. 

The  company  which  makes  equipment 
for  managing  electrical  energy,  recently 
made  a  switch  from  one  LAN  telephony 
system  to  another,  opting  to  upgrade  with 
Alcatel’s  OmniPCX4400  IP  PBX  when  it  out¬ 


grew  the  3Com  NBX  100  system  it  installed 
more  than  two  years  ago. 

Seago  says  the  reason  for  the  voice-over- 
IP  swap  “was  a  bit  of  future  planning,”  as  the 
company  saw  its  employees  jump  from  18 
to  145  in  two  years.“We  expect  to  continue 
growing,”  he  says. 

The  competition 

Seago  looked  at  Alcatel’s  low-end  Omni- 
PCX  4400,  which  can  scale  to  about  500 
users.  3Com  has  since  released  its  Super- 
Stack  3  NBX,  which  scales  to  700  users  — 
and  this  week,  an  updated  version  that 
goes  to  1,500  phones.  But  at  the  time, Seago 
choose  Alcatel’s  product  because  the  500- 
user  NBX  was  new, and  Alcatel  already  had 
support  for  larger  users. 

“When  putting  a  phone  in  for  the  presi¬ 
dent  of  the  company  you  don’t  want  to  put 
something  in  that  was  first-generation,” 
Seago  says  of  the  newer  version  of  the 


3Com  product.  However,  if  the  decision 
was  to  be  made  today  with  the  3Com 
SuperStack  NBX  being  out  for  some  time,“I 
might  have  chosen  differently,”  he  adds. 

Other  factors  led  to  the  decision  to  go 
with  Alcatel,  Seago  says. 

“With  Alcatel,  the  pieces  we  wanted,  like 
scalability  an  integrated  call  center  and 
multiple  site  support  with  directory  ser¬ 
vices  were  all  there,”  he  says. 

Seago  says  he  will  use  the  OmniPCX  to 
control  call  routing  and  queuing  for  the 
company  call  center,  and  for  computer- 
telephony  integration  for  call  center  staff. 
And  because  the  box  supports  Lightweight 
Directory  Access  Protocol,  he  will  integrate 
the  phone  system  directory  in  with  his 
Microsoft  Active  Directory  to  consolidate 
management  for  voice  and  data. 

Although  the  OmniPCX  offers  more  seal- 
ability  and  features,  Seago  says  he  misses 
See  Encorp,  page  16 


world.  The  3300  picks  only  the  best 
Internet  connection  to  link  a 
remote  site  to  a  limited  number  of 
other  corporate  VPN  sites,  so  it 
requires  less  processing  power. 

Still,  analysts  question  whether  users 
will  pay  the  price  being  asked.  Route- 
Science’s  central  site  gear  costs  up  to 
$250,000,  and  PathControl  3300  for  branch 
sites  costs  $15,000  to  $30,000  depending 
on  the  hardware  configuration. 

“If  you  pay  that  much  to  improve  a  VPN 
connection  between  a  headquarters  and 
a  branch  office,  the  price  [of  multiple  ISP 
connections]  has  to  come  down  $3,000 
per  month  to  make  any  meaningful  return 
on  your  investment,”  says  Zeus  Kerravala, 
an  analyst  with  The  Yankee  Group. 

Kerravala  also  says  the  price  of  the 
branch-  office  gear  has  to  come  down  to 
$7,000  to  be  attractive  to  enterprise  cus¬ 
tomers.  He  notes  that  netVmg  recently 
introduced  a  similar  branch-office  box  for 
$12,000. 

He  says  businesses  might  want  to 
test  Sockeye  or  Proficient,  which  offer 
route-control  services.  That  way  they  can 
get  a  flavor  for  the  technology. 

RouteScience:  www.routescience.com 


RouteScience  box  chooses  best  path 

Company  introduces  PathControl  3300  to  boost  VPN  performance. 


RouteScience’s  PathControl  3300  can  choose  optimal 
Internet  connections. 


■  BY  TIM  GREENE 

RouteScience  Technologies  this 
week  is  introducing  a  network  appli¬ 
ance  designed  to  make  site-to-site  IP 
VPN  connections  faster  and  more 
reliable  so  they  can  be  used  as  a  less- 
expensive  alternative  to  frame  relay 
or  dedicated  lines. 

The  company  is  introducing  Path- 
Control  3300,  a  box  that  picks  the  best 
route  for  corporate  Internet  traffic  to  take 
as  it  leaves  sites  that  have  multiple  In¬ 
ternet  connections. 

The  idea  behind  this  route-control  tech¬ 
nology  is  that  with  more  than  one  Internet 
connection  to  choose  from  and  the  ability 
to  choose  the  best-performing  one,  a  cor¬ 
porate  site  almost  always  will  have  an  avail¬ 
able  Internet  link  that  performs  well 
enough  to  carry  critical  network  traffic. 
Today  such  traffic  is  typically  carried  on 
frame  relay  or  dedicated  circuits. 

So  far,  a  small  group  of  vendors  is  pro¬ 
moting  route-control  technology  as  ser¬ 
vices  or  as  boxes  companies  can  buy.  In 
addition  to  RouteScience,  these  vendors 
include  netVmg,  Opnix,  Proficient  Net¬ 
works  and  Sockeye  Networks. 


Route  controllers  sit  behind  corporate 
firewalls  and  act  as  routing  peers  with  WAN 
routers  that  connect  to  more  than  one  ISP 
Route  controllers  probe  to  determine  how 
well  each  ISP  connection  is  performing 
and  pick  the  best  route  for  traffic  to  take. 
Using  Border  Gateway  Protocol,  these 
devices  update  the  route  tables  of  the  WAN 
routers  so  they  route  traffic  to  the  best-per¬ 
forming  ISP 

Later,  if  another  ISP’s  performance 
becomes  the  best,  the  route  controller 
changes  the  route  tables  again  to  opti¬ 
mize  traffic  flow. 

PathControl  3300  is  a  scaled-down  ver¬ 
sion  of  the  company’s  initial  product, 
called  PathControl,  which  is  designed 
for  major  corporate  sites  that  host 
Internet  Web  sites  and  e-commerce 
sites.  Users  of  these  sites  can  access 
servers  literally  from  anywhere  in  the 
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In  a  recent  column  I  challenged  “high- 
end”  IPX  users  to  speak  up  about  what 
they  were  doing  with  IPX  that  could  not 
be  done  better  with  IP  While  not  deluged 
with  responses,  those  who  did  respond 
took  their  IPX  very  seriously.They  cited  spe¬ 
cific  benefits  over  TCP/IP  and  don’t  look 
forward  to  the  day  they  might  have  to  rele¬ 
gate  it  to  the  junk  heap. 

One  die-hard  user  said  that  the  most  com¬ 
pelling  reason  to  use  IPX  services  on  the 
LAN  is  for  security  Running  internal  appli¬ 
cations  and  services  on  a  protocol  that  can 
be  blocked  easily  and  controlled  at  the 
edge  would  make  it  more  difficult  for  hack¬ 
ers,  he  maintains. 

He’s  got  a  good  point.  Furthermore,  one 


IPX-cellence  overlooked? 


would  have  to  imagine  that  99.99%  of  hack¬ 
ing  activity  centers  on  IP  IPX  hacking  just 
doesn’t  offer  the  same  return  on  investment 
to  the  hacker. 

Another  respondent  cited  lower  total 
cost-of-ownership  when  using  IPX.  He  had 
tremendous  trouble  configuring  multiple 
network  printer  servers  with  friendly 
names  first  via  a  gateway  Dynamic  Host 
Configuration  Protocol  server  and  then  via 
static  addresses.  However,  his  troubles  van¬ 
ished  when  IPX  was  configured  as  the  net¬ 
work  protocol  on  the  server  supporting  the 
printer  management  console. 

One  technician  put  it  simply:“You  have  to 
admire  a  protocol  that  uses  a  [network  in¬ 
terface  card/media  access  control]  ad¬ 
dress  in  its  addressing  scheme  . . .  Elegant!" 
However,  his  company’s  network  has 
recently  stopped  routing  IPX. 

Another  IPX  advocate  admitted  that  his 
company  has  weaned  the  protocol  from  its 
WANs,  but  uses  it  on  LANs  for  a  number  of 
reasons,  including  to  maintain  support  for 
legacy  applications,  such  as  payroll,  that 


were  customized  to  run  over  IPX  networks 
that  support  NetWare-related  Btrieve. 

Interestingly  this  last  user  also  hits  on 
another  issue  of  IPX  excellence:  uptime. 
Seems  he’s  the  lone  NetWare  expert  left  at 
his  company  which  has  added  20  people 
to  support  the  burgeoning  population  of 
Windows  servers. 

NetWare  server  uptime  is  high  and 
“abends”  (short  for“abnormal  ending”and 
also  known  as  “Blue  Screens  of  Death”  in 
Microsoftese)  are  so  rare  that  an  occur¬ 
rence  is  headline  news  at  the  company 
and  he  takes  the  heat.  Meanwhile,  he  says 
Windows  server  outages  are  so  common, 
they  are  a  given  and  people  rarely  com¬ 
plain. 

I  applaud  all  our  IPX  advocates  for  speak¬ 
ing  up.  It  appears  there  still  are  pockets  of 
IPX  out  there  on  enterprise  networks.  And 
while  a  few  users  expressed  the  need  to  tap 
into  device  statistics  on  the  performance  of 
IPX,  there  was  no  resounding  chorus  for 
such  support  or  for  vendors  to  prove  their 
IPX  routing  performance.  Vendors  offering 


IPX  routing  in  their  switches  don't  seem  to 
be  removing  it  —  but  we  don't  see  any  new 
switches  on  the  market  touting  such  sup- 
port.Fortunatelyone  can  always  run  IPX  on 
a  Layer  2  network.  Layer  2  “bridges”  (as 
switches  really  are)  are  protocol  indepen¬ 
dent  —  even  folks  with  SNA  and  DECnet 
will  be  forever  supported. 

But  that’s  another  story  . . . 

So  in  a  nutshell,  it  seems  that  with  all  the 
finesse  of  IPX.it  is  used  primarily  to  support 
legacy  applications  and  for  protection 
against  hacker  attacks. 

And  while  IPX  as  a  routing  protocol  will 
remain  an  inherent  part  of  a  switch’s  capa¬ 
bilities  for  many  vendors,  judging  by  the 
number  of  respondents,  and  not  their  fer¬ 
vor,  it  seems  that  the  user  community  has 
little  interest  in  IPX  numbers,  let  alone  any 
IPX-pectations. 

Tolly  is  president  of  The  Tolly  Group ,  a 
strategic  consulting  and  independent  test¬ 
ing  company  in  Manasquan,  NJ.  He  can  be 
reached  at  ktolly@tolly.com. 


Low-cost  switches 
from  Allied  Telesyn 


Encorps  VoIP  upgrade 

Energy  company  Encorp  installed  Alcatel's  OmniPCX  4400  IP  PBX  when  it  outgrew  its  3Com 
NBX  IP  telephony  system.  Here’s  the  network  and  a  couple  of  key  benefits: 

N.J.  office 


HQ  in  Windsor,  Colo. 

Alcatel  Omnistack  6024  switches  Omnicore  50 


SonicWall  VPN 
gateway/firewall 
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Traffic  between  phones  and 
IP  PBX  travels  on  its  own  VPN, 
not  on  dedicated  lines. 


Omni  PCX  4400  can 
scale  to  support 
500  users. 


SonicWall  VPN  gateway/firewall 


■  BY  PHIL  HOCHMUTH 

BOTHELL, WASH.— With  an  eye 
toward  helping  customers  more 
quickly  and  simply  deploy  and 
manage  workgroup  switches, 
Allied  Telesyn  last  week  added 
three  devices  to  its  line  of  “virtual¬ 
ly”  stackable  Layer  2  Ethernet 
switches. 

The  AT  8000  series  consists  of 
three  24-port  boxes  that  can  be 
stacked  together  and  controlled 
with  the  company’s  Enhanced 
Stacking  software. 

Enhanced  Stacking  software 
also  removes  the  restriction  that 
switches  actually  be  physically 
stacked  as  they  can  now  be 
directly  connected  to  the  net¬ 
work,  not  via  specialized  inter¬ 
connections  between  boxes. This 
support  could  let  switches  in  an 
Enhanced  Stack  be  distributed  in 
different  wiring  closets  or  even  on 
different  floors  in  a  building. 

The  AT-8025FC  comes  with  24 
10/100M  bit/sec  Ethernet  ports 
and  two  fixed-configured  100¬ 
BaseFX  ports  for  connecting  to  a 
fiber-optic  backbone. 

The  AT-8024GB  comes  with 
two  Gigabit  Interface  Converter 
expansion  slots  for  inserting 
Fast  or  Gigabit  Ethernet  uplinks 
with  fiber  or  copper  GBICs.The 
AT-8024  comes  with  no  uplink 
modules. 

Introduced  in  April,  Enhanced 


Stacking  software  lets  up  to  24 
Allied  Telesyn  switches  be 
stacked  together  with  standard 
Ethernet  connections,  allowing 
for  up  to  576  ports  to  be  managed 
with  one  IP  address. 

The  software  also  lets  users  ac¬ 
cess  configuration  settings 
through  a  Web  interface  on  the 
switches.  This  feature  could  let 
changes  such  as  virtual  LAN 
(VAN)  settings,  port  mirroring 
and  monitoring,  port  trunking 
and  quality-of-service  (QoS)  set¬ 
tings  be  made  more  easily  than 
accessing  multiple  switches 
through  a  command-line  inter¬ 
face  management  tool  such  as 
Telnet, according  to  the  company 

All  three  switches  support  IEEE 
Ethernet  standards  such  as 
802. IQ  VAN  tagging,  802.1ad 
link  aggregation  and  802. Ip  traf¬ 
fic  prioritization  for  QoS. 

The  AT-8026  costs  $845,  while 
the  A5-8024GB  and  AT-8024 
cost  $1,000  and  $700,  respectively. 
All  products  are  available  now. 

Allied  Telesyn:  www.alliedtele 
syn.com 
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Encorp 

continued  from  page  15 

the  simplicity  of  the  3Com  man¬ 
agement  interface. 

“The  3Com  box  was  easier  to 
program,”  he  says.’The  Alcatel  [IP 
PBX]  is  a  fairly  complicated  box. 
It  has  interfaces  that  let  you  do 
anything  you  want  to  do,  includ¬ 
ing  things  you  don’t  want  to  do.” 

Like  any  new  system,  there  is  a 
learning  curve,  Seago  says.  Re¬ 
cently  while  configuring  two 
phones  to  cover  the  same  exten¬ 
sion,  he  and  his  staff  inadvertently 
disabled  both  phones,  he  says. 

Sticker  shock 

The  difference  in  cost  of  the  two 
companies’  IP  phones  also  was  a 
bit  of  a  shock, Seago  adds. 

“What  surprised  me  on  the  pur¬ 
chase  was  the  high  price  for  the 
phones  themselves,”  Seago  says. 
“Our  3Com  phones  were  costing 
us  about  $220  each,  but  Alcatel’s 
Reflex  [IP  handsets]  are  costing 
us  about  $600  to  $700,  including 


all  the  software  licensing.” 

Once  the  Alcatel  system  was 
delivered  and  brought  up, 
changes  to  the  network  in  swap¬ 
ping  3Com  IP  telephony  for 
Alcatel  were  almost  nil,  Seago 
says,  as  his  data  network  already 
consisted  of  Alcatel  OmniCore 
and  OmniStack  switches.  Support 
for  802. IQ  virtual  AN  (VAN) 
tagging  on  the  OmniPCX  and 
Alcatel  Ethernet  switches  also  has 
given  the  voice  network  a  quality 
boost. 

“With  3Com,  voice  was  in  direct 
contention  with  our  data  net¬ 
work,”  because  the  2.5-year-old 
NBX  model  didn’t  support  802.  IQ 
VANs,  Seago  says.“If  a  big  e-mail 
of  FTP  was  going  through  the  net¬ 
work,  everyone  in  the  company 
knew  it.” 

Now  Seago  segregates  traffic 
going  between  the  IP  phones  and 
the  IP  PBX  into  their  own  VAN 
without  any  traffic  prioritization. 

“We  didn’t  have  to  implement 
priority  queues  on  the  switches 
and  use  prioritization  because 


the  isolation  [of  the  voice  packets 
onto  a  VAN]  has  been  able  to 
take  care  of  the  entire  load,”  he 

says. 

Seago  also  has  extended  the 
OmniPCX  to  a  branch  office  in 
New  Jersey,  which  is  connected 
by  a  VPN  link.  A  T-l  line  from 
Qwest  connects  Encorp’s  Wind¬ 
sor  headquarters  to  the  Internet, 
and  a  256K  bit/sec  leased  line 
links  the  New  Jersey  office  at  the 
other  end.  The  company  uses 
SonicWall  VPN  gateway/firewall 
boxes  at  each  end  of  the  network 
for  IP  Security  traffic  encryption. 
While  no  quality  of  service  is 
used  over  the  VolP/VPN  link, 
Seago  says  it’s  enough  to  support 
the  small  branch  office. 

“We  found  that  you  can  do  three 
full  conversations  and  have  no 
corruption,"  over  the  VPN  line, 
even  with  data  packets  running 
alongside  voice, Seago  says.“lf  you 
do  a  large  file  transfer,  yes,  you’ll 
see  a  little  [breakup]  of  voice,  but 
in  real-world  mode,  we  haven’t 
seen  it."H 


www.nwfusion.com 


6/10/02 


Connections  2002  notebook 

Where  home  network  technologies  are  and  where  they’re  headed. 


Home  network  scorecard 


Current  and  emerging  technologies  at  a  glance 


Technology 

Transmits  data  over 

Pros 

Cons 

HomePlug 

Existing  power  lines 
at  14M  bit/sec 

Good  range;  easy  to  configure; 
next-generation  products  will 
be  smaller;  plug  into  power 
outlet;  prices  will  drop  soon. 

First  iteration  of 
products  are  expensive, 
bulky,  lots  of  wires, 
require  wall  outlet. 

R  7.3 

Existing  power  lines 
at  1M  bit/sec 

Focused  on  connecting  home 
appliances  at  lower  speeds. 

Incompatible  with 
HomePlug  gear. 

HomePNA 

Existing  phone  lines, 
Version  2.0  10M  bit/sec 

Easy  to  use;  reliable;  good 
range;  built-in  quality  of  service; 
next  generation  shows  promise. 

Current  speeds  slow  for 
video  distribution. 

HomeRF 

Wirelessly  in  the  2.4- 
GHz  band,  10M  bit/sec 

Built  for  the  home  environment, 
low  interference;  good  signal 
strength  through  walls. 

Dearth  of  industry 
support  for  products; 
relatively  slow  speeds. 

802.11b 

Wirelessly  in  the  2.4- 
Ghz  band,  11M  bit/sec 

Overwhelming  industry  support; 
good  performance  and  prices. 

Interference  with  some 
2.4-GHz  phones;  signal 
strength  varies. 

802.11a 

Wirelessly  in  the  5- 
GHz  band,  54M  bit/sec 

High  speeds;  eight  channels 
compared  with  802. lib's  three. 

Costly,  less  reliable  and 
half  the  range  of  802.11b. 

802.1  lg 

Wirelessly  in  the  2.4- 
GHz  band,  54M  bit/sec 

High  speeds;  backward 
compatible  with  802.11b 
products.  Good  range. 

Specification  won't  be 
completed  until 
mid-2003. 

For  the  full  version  of  this  story,  please  go  online.  DocFinder:  9722 


■  BY  TONI  KISTNER 

I  came  away  from  the  recent  Connec¬ 
tions  2002  conference  in  Dallas  with  a  tote 
bag  full  of  developments  and  insights  from 
each  of  the  home  network  technology 
camps.  Here’s  a  rundown: 

Power  line 

Cogency  Semiconductor  demonstrated 
a  reference  design  of  Piranha,  its  next-gen¬ 
eration  HomePlug  certified  chipset.  The 
first  HomePlug  products  based  on  the 
Intellon  FbwerPacket  chipset  are  bulky 
desktop  adapters.  In  contrast,  the  Cogency 
chipset  allows  for  a  much  smaller  adapter 
that  plugs  into  a  power  outlet,  saving  con¬ 
siderable  desk  space.  It  also  works  on 
power  strips. 

With  two  chip  makers  in  the  market 
(three  if  you  count  Conexant,  which  also 
makes  the  Intellon  chip),  the  price  of  prod¬ 
ucts  should  drop.  (Today  Linksys  Intellon- 
based  power-line  adapters  and  bridges 
cost  about  $150.)  Cogency  CEO  Ron 
Glibbery  says  his  company  built  the  refer¬ 
ence  design  to  help  vendors  speed  time  to 
market, and  expects  we’ll  see  the  first  prod¬ 
ucts  based  on  its  USB-HomePlug  Wall 
Adapter  by  Thanksgiving. 


Takes 

■  Kinetic  Workplace  last  week 
announced  two  Web-based  telework 
training  products  geared  to  large 
firms.  KineticSkills  Online  Training  for 
Teleworkers  teaches  employees  how 
to  enhance  their  communication  and 
remote-work  skills,  choose  telework 
days,  set  core  hours,  create  a  support 
network,  participate  in  virtual  meet¬ 
ings,  and  watch  for  and  maintain 
career  advancement.  KineticSkills 
Online  Training  for  Managers  helps 
bosses  recognize  the  management 
skills  and  practices  they  need,  and 
offers  tips  and  tactics  to  ensure  their 
employees'  success.  Available  now, 
pricing  has  not  been  announced. 
www.kineticworkplace.com 


By  next  month, the  Consumer  Electronics 
Association  will  likely  select  a  power-line 
technology  for  its  rival  power-line  specifi¬ 
cation,  called  R  7.3,  says  a  representative 
from  Itran,  one  of  the  contending  compa¬ 
nies.  The  race  is  between  Itran,  nSine  and 
Inari.  Even  so,  HomePlug  President  Tom 
Reed  isn’t  concerned. 

“The  game  is  over Reed  says.  “Vendors 
are  already  building  HomePlug  products. 
They  won’t  build  a  second  product  based 
on  a  second  technology’ 

Reed  adds  that  the  HomePlug  Pbwerline 
Alliance  is  learning  from  the  mistakes  of 
the  Home  Phoneline  Networking  Alliance 
(HomePNA)  when  it  comes  to  consumer 
education.  While  HomePNA  is  a  stable, 
easy-to-use  technology,  sales  stalled  be¬ 
cause  consumers  never  understood  the 
concept  of  running  a  network  over  existing 
phone  lines. 

“We’re  working  hard  to  simplify  the  mes¬ 
sage,”  Reed  says.  “We’re  even  kicking  our¬ 
selves  for  calling  it  ‘power-line  technology 
Turns  out,  that  makes  people  think  of  the 
wires  that  run  outside  along  telephone 
poles.  Instead,  we’re  pushing  the  idea  of 
'electrical  outlet  connectivity  We  will  have 
a  mass  market  focus  —  Always! 

HomePNA 

While  the  HomePlug  Powerline  Alliance 
has  kept  a  low  profile  in  recent  months, 
news  of  Version  3.0  of  the  specification 
should  give  it  plenty  to  talk  about.  Version 
3.0  will  allow  for  much  higher  speeds  — 
from  40M  to  100M  bit/sec,  making  it  an 
excellent  technology  to  distribute  video 
throughout  to  homes.  HomePNA  is  consid¬ 
ering  technologies  from  three  chip  manu¬ 
facturers  —  CopperGate,  Serconet  and 
Broadcom  —  as  the  basis  of  the  new  spec¬ 
ification.  Broadcom’s  technology  was  used 
for  previous  versions,  but  an  insider  said 
the  group  needs  “some  new  blood  and  not 
just  Broadcom  as  the  shoe-in.”  HomePNA 
will  choose  the  winner  by  the  end  of  this 
month,  according  to  Dave  Thomasson, 
HomePNA  spokesman  and  CopperGate 
vice  president  of  marketing. 

Thomasson  says  he  is  confident  Version 
3.0  will  put  HomePNA  back  in  the  race  for 
next-generation  applications.  “What  better 
way  to  transmit  a  movie  that’s  playing  on 
the  TV  in  the  living  room  to  a  TV  that’s 
upstairs  in  the  bedroom?  Sure,  wireless  has 
a  place,  but  not  so  much  to  move  video.  If 
you  can’t  define  the  range  of  the  network, 


how  can  you  prioritize  packets?”  he  says. 

HomePNA  3.0  adapters  and  bridges  are 
scheduled  to  hit  the  market  by  March  of 
2003,  with  residential  gateways  to  follow  in 
June  2003. 

HomeRF 

On  to  the  wireless  world:  In  the  face  of 
the  wild  success  of  802.11b,  the  HomeRF 
Working  Group  has  recently  changed  its 
tune  to  one  of  cooperation,  not  competi¬ 
tion  —  at  least  on  the  data  side. To  achieve 
higher  than  HomeRF  2.0  technology’s  10M 
bit/sec  data  rates,  the  group  plans  to  write 
application  briefs  describing  how  to 
bridge  between  2.4-GHz  and  5-GHz  tech¬ 
nologies,  and  how  to  handle  differences  in 
quality  of  service. 

Wayne  Caswell,  the  group’s  communica¬ 
tions  chairman, also  sees  a  bright  future  for 
HomeRF  technology  in  multimode  chips. 
There  are  more  than  10  chip  vendors  mak¬ 
ing  multimode  chipsets  —  which  support 
more  than  one  technology  “Embedded 
Wireless  Devices  makes  a  chip  that  lets  you 
use  Bluetooth  and  802.11b  together,” 
Caswell  says.  “Why  not  one  that  supports 
802.11b  and  HomeRF?” 

802.11X 

John  Marshall,  2Wire’s  vice  president  of 


marketing,  is  trying  to  figure  out  what  fla¬ 
vors  of  802.1  lx  to  support  in  the  company’s 
residential  gateway  this  year  —  and  next 
year. 802.1  lb  is  a  no-brainer  in  the  home  — 
the  number  of  wireless  home  networks  is 
expected  to  jump  from  10%  to  40%  this 
year,  according  to  Cahners  ln-Stat  analyst 
Mike  Wolf.  But  when  it  comes  to  higher 
speeds  the  jury  is  still  out  on  whether 
802.1  la  or  802.1  lg  will  win. 802.1  la  is  avail¬ 
able  now,  works  in  the  5GHz  band  and  gets 
54M  bit/sec  (rated).  802.1  lg,  which  won’t 
be  out  for  a  year,  works  in  the  2.4-GHz 
band,  gets  comparably  high  speeds  and  is 
backward  compatible  with  802.1  lb. 

While  802.11a  is  being  adopted,  albeit 
slowly,  in  businesses  today,  Marshall  says, 
“802.11a  is  no  good  in  the  home.  It 
requires  more  power,  and  when  you  try 
pushing  more  power  through  plaster 
walls,  the  signal  degrades  and  throughput 
drops  right  off.  For  2Wire,  the  decision  is 
driven  by  cost.  “We’re  leaning  toward 
802.1  lg.  But  If  802.1  la  gets  good  traction 
in  the  business  environment,  we’ve  got  to 
reconcile  how  to  support  users  who 
brings  their  802.11a  notebooks  from  the 
office  to  work  at  home,”  Marshall  says. “To 
us  the  big  question  is  whether  the  market 
will  accommodate  a  higher-priced  dual¬ 
mode  [801 .11] a/g  product.”  ■ 


Want  to  have  a  life?  You  better  have  a  reliable  phone  system. 

Where  voice  is  concerned,  reliability  isn't  an  option  -  it  has  to  be  there. 

SHORELINE  DELIVERS  RELIABILITY  AND  INTUITIVE  MANAGEMENT 

“We  agree  with  the  vendor’s  contention  that  this  approach  eliminates  any  single  point  of  failure.” 

“...our  testers  concur  (that  Shoreline)  is  the  most  intuitive  management  interface  of  any  IP-PBX 
we’ve  reviewed  to  date.  ” 

Ed  Mier,  Business  Communications  Review 

"I've  been  in  technology  for  14  years.  I  would  rank  Shoreline  as  one  of  the  5  hottest  products 
I  have  ever  seen. " 

»  r  „  Derrick  Chandler,  IT  Director  BKF  Engineers 

■■pari  ■■  r  pstn  \ 

Finally-  an  enterprise  class  IP  phone  system, 
scalable  to  over  5000  users  with  reliability  designed  in. 


To  receive  our  VoIP  network  poster: 
"Designing  Highly  Reliable  Voice 
Communications" 
or  our  CD  featuring  a 
case  study  based  on 
CNET  Networks'  recent 
move  to  IP  voice,  call 
1-877-80SHORE  or  visit: 
http://reliable.goshoreline.com 

<5  Shoreline- 

Robust  IP  Phone  Systems 

www.goshoreline.com 
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■  IBM  and  Inktomi  last  week 
teamed  to  help  large  corporations 
provide  high-bandwidth  applications, 
including  streaming  media  and  key 
business  applications  such  as  enter¬ 
prise  resource  planning,  across  their 
networks. 

The  companies  will  help  their  cus¬ 
tomers  build  enterprise  content 
delivery  networks.  Inktomi  software 
running  on  IBM  xSeries  servers 
forms  the  core  of  the  offering,  and 
IBM  will  provide  systems  integration 
services,  and  in  some  cases,  storage 
gear. 

Companies  that  want  to  provide  con¬ 
tent  such  as  training  videos  might 
have  to  cache  that  content  in  different 
locations  around  a  network  and 
change  it  overtime.  IBM  and  Inktomi 
aim  to  help  them  manage  their  deliv¬ 
ery  of  content  and  applications,  mak¬ 
ing  sure  versions  are  synchronized, 
available  bandwidth  is  used  intelligent¬ 
ly  and  the  end  user  gets  the  right 
quality  of  service,  www.ibm.com; 
www.inktomi.com 

■  The  network  executive's  task  of 
keeping  users  in  compliance  with 
company  computing  policies  might 
have  gotten  a  bit  easier  last  week  as 
PoliVec  released  Version  3.0  of  its 
Scanner  automated  policy  auditing 
tool.  The  tool  boosts  the  application's 
auditing  capabilities,  but  also  lets 
administrators  scan  PCs  to  ensure 
they  are  running  up-to-date  security 
patches  PoliVec  says. 

PoliVec  Scanner  3.0  can  scan 
between  10  and  20  networked 
machines  running  Windows  NT  4, 
2000  or  XP.  It  can  inspect  user  pass¬ 
words  and  check  them  against  a  list 
of  common,  easily  guessed  words.  If 
such  words  are  found,  users  can  be 
directed  to  choose  harder-to-guess 
passwords. 

Expanding  beyond  policy  control, 
Scanner  3.0  also  will  scan  programs 
for  patches  and  check  Microsoft 
applications  against  a  PoliVec-sup- 
plied  database  to  ensure  users  are 
running  up-to-date  software.  The 
product  costs  $10,000  for  250  sys¬ 
tems.  www.polivec.com 


Cultivating  managed  security 

Outsourced  security  can  ease  admin,  headaches,  but  issues  remain. 


■  BY  ELLEN  MESSMER 

Although  outsourcing  security  is  still  a 
controversial  subject,  an  increasing  num¬ 
ber  of  businesses  are  electing  to  turn  over 
the  round-the-clock  monitoring  of  their 
intrusion-detection  systems,  firewalls  and 
VPNs  to  outside  firms  known  as  managed 
security  service  providers  that  do  the  job 
remotely  over  the  Internet  or  private  lines. 

Corporations  often  say  the  reason  to  out¬ 
source  is  the  difficulty  in  finding  trained 
personnel  to  hire  for  late-night  shifts  of  IDS 
and  other  security  gear,  or  that  in-house 
costs  appear  far  more  than  what  MSSPs 
charge  to  perform  the  job. 

Security  managers  who  have  outsourced 
security  monitoring  emphasize  the  need  to 
establish  close  contact  with  the  MSSP  staff 
to  respond  quickly  when  security  inci¬ 
dents,  such  as  attempted  break-ins,  arise. 

Boston’s  CareGroup  Healthcare  System, 
which  operates  a  regional  network  in  east¬ 
ern  Massachusetts  for  sharing  of  medical 
data,  uses  MSSP  Counterpane  Internet 
Security  to  monitor  its  perimeter  and  inter¬ 
nal  servers. 

CareGroup  CIO  John  Halamka  said  he 
faced  the  decision  whether  to  outsource 
intrusion-detection  monitoring  more  than 


Managed  security 

Pros  and  cons  of  managed 
security  services: 

Pros 

•  Security  protections  customers 
otherwise  might  not  be  able  to  afford. 

•  Ability  to  tap  outside  security 
expertise. 

•  Wide  choice  of  security  services 
available. 

Cons 

•  Less  possibility  to  build  in-house 
expertise  and  knowledge. 

•  Legal  complications  might  arise 
during  security  incidents. 

•  Economic  conditions  could  force 
security  services  provider  out  of 
business  suddenly. 

a  year  ago  when  he  purchased  IDS  equip¬ 
ment,  which  in  this  case  was  the 
RealSecure  host-  and  network-based  IDS 
from  Internet  Security  Systems. 

“I  had  a  choice  18  months  ago  whether  to 
require  in-house  staff  to  do  it  —  and  I  esti¬ 
mated  1  would  need  five  full-time  engi¬ 
neers  —  or  outsource  it,”  Halamka  says.  “I 


decided  to  outsource  it,  and  it  costs  less 
than  half  of  what  it  would  cost  me  to  do  it.” 

CareGroup  faces  continuous  network 
attacks,  some  of  which  have  been  traced  to 
the  Massachusetts  Institute  of  Technology 
Halamka  says.  Responding  to  the  problems 
from  port  scanning  to  break-ins  and  denial- 
of-service  attacks  requires  close  communi¬ 
cation  between  Counterpane  and  Care¬ 
Group  staff.“We  really  had  to  work  together 
to  get  the  right  level  of  granularity  on  this” 
he  says. 

The  CareGroup  network  operations  cen¬ 
ter,  which  is  open  24-7,  works  with  Coun¬ 
terpane  in  a  way  that  gives  CareGroup 
immediate  notification  of  real  trouble,  but 
saves  the  routine  problems  for  daily  e-mail 
reports.  Although  it’s  taken  considerable 
effort,  outsourcing  security  monitoring  has 
worked  well  so  far  for  CareGroup,  which 
just  renewed  its  contract  with  Counterpane 
for  another  18  months. 

At  Chicago’s  Peoples  Energy  vice  presi¬ 
dent  of  IT  services  Will  Evans  says  his  com¬ 
pany  found  it  was  far  from  easy  to  hire  staff 
to  conduct  security  monitoring.  “You  have 
to  align  yourself  with  someone  for  out¬ 
sourced  monitoring,”  says  Evans,  who 
began  using  Riptech  last  fall  for  perimeter 

See  MSSP,  page  22 


Miramar  beefs  up  PC  migration  mgmt 


■  BY  JOHN  FONTANA 

SANTA  BARBARA,  CALIF  —  Upgrading  end  users  to  new  PCs 
along  with  their  coveted  data  and  application  settings  is  an  exer¬ 
cise  fraught  with  peril  and  one  no  IT  staff  takes  lightly 

Miramar  Systems  this  week  addresses  the  challenge  with  an 
upgrade  to  its  Desktop  DNA  Enterprise  Edition  and  a  new  com¬ 
panion  product  called  Desktop  DNA  Professional  for  companies 
with  fewer  than  500  PCs. 

The  software,  called  DNA  because  it  records  a  PC’s  unique  qual¬ 
ities  from  wallpaper  to  network  settings,  automates  and  ensures 
the  accuracy  of  data  and  configuration  settings  for  Windows-based 
systems  migrated  between  PCs.  It  is  a  reaction  to  keep  pace  with 
competitor  Altiris,  according  to  experts.  Tranxition  also  develops 
similar  migration  tools. 

Miramar  has  added  a  management  tool  kit  in  its  DNA  Enterprise 
Edition  4.0  that  provides  utilities  for  controlling  the  migration 
process, supporting  proprietary  applications  and  analysis. 

“Getting  it  right  can  mean  completing  migrations  in  a  couple 
of  hours  as  opposed  to  an  entire  day”  says  Steve  Furgas,  manag¬ 
er  of  the  product  support  team  for  Deloitte  Consulting.  “The 
management  gives  you  the  ability  to  set  up  the  migration  soft¬ 
ware  so  it  reduces  the  time  a  technician  has  to  work  with  a 


machine.  A  technician  can  start  one  migration  and  move  on  to 
another  machine.” 

DNA  Enterprise  Edition  features  the  Migration  Management 
Toolkit  suite,  which  is  made  up  of  DNA  Director, Template  Editor, 
DNA  Explorer  and  DNA  Studio.  Director  provides  control  over  the 
entire  migration  process.The  Template  Editor  is  used  to  create  cus¬ 
tom  templates  that  control  what  files  and  settings  are  collected, 
including  those  from  proprietary  applications.  DNA  Studio  is  used 
to  write  custom  scripts  for  collecting  data,  including  a  drag-and- 
drop  feature  that  automatically  generates  scripts.  DNA  Explorer 
provides  a  centralized  view  of  files  that  store  the  collected  data, so- 
called  DNA  files. 

“We  are  recommending  migration  over  ghost  imaging  because 
you  end  up  with  a  more  stable  desktop" says  Rob  Ender!e,an  ana¬ 
lyst  with  Giga  Information  Group. 

Desktop  DNA  installs  on  individual  PCs,  but  DNA  files  can  be 
stored  on  a  server  before  being  applied  to  a  new  PC.The  software 
also  works  directly  with  a  machine-to-machine  connection  and 
includes  an  undo  feature  that  can  be  used  on  individual  settings. 

Pricing  for  Desktop  DNA  Enterprise  Edition  4.0  starts  at  $32  per 
seat.  The  Professional  Edition,  which  has  fewer  customizable  fea 
tures.is  priced  at  $27  per  seat. 

Miramar:  www.miramar.com 
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e-business.  It's  the  only  game  In  town.  And  downtime  means  losing  profits  and  opportunities,  so  you 
can’t  let  it  happen.  IBM  Tivoli  software  lets  you  predict  the  business  impact  of  the  technology  you’re 
responsible  for,  so  that  you  can  make  smarter  decisions  today.  Tivoli.  Part  of  our  winning  software  team, 
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Fellow  Network  World  columnist  Mark 
Gibbs  likes  pretty  e-mail. Or  so  his  May 
27  Gearhead  column  would  have  us 
believe  (www.nwfusion.com,  DocFinder: 
9733).  But  1  hope  that  he  won’t  send  me 
pretty  e-mail  when  he  sees  this  column 
because  he  will  get  the  letter  back  unread. 

1  don’t  know  who  came  up  with  the  idea 
of  using  HTML  —  the  protocol  used  to 
describe  the  appearance  of  Web  pages  — 
in  e-mail,  but  it  seems  to  have  been  done 
without  much  consideration  of  privacy 


Enterprise  Applications _ 

Pretty  is  as  pretty  does 


and  security  implications. 

HTML  e-mail  can  sure  be  pretty  or  is  that 
pretty  annoying?  The  program  that  Mark 
gives  such  a  high  grade  to  sounds  like  it 
could  do  a  nice  job  of  putting  together  an 
e-mail  message,  complete  with  colors  and 
sound  effects,  that  1  would  not  want  to  get 
first  thing  in  the  morning.  But  the  reason 
Mark,  or  anyone  else  who  sends  me  an 
HTML  message,  will  get  it  automatically 
tossed  back  has  nothing  to  do  with  the  fact 
that  the  mail  might  contain  a  tinny  version 
of  the“Ride  of  theWalkure.”I  bounce  HTML- 
based  e-mail  because  it  is  a  threat  to  the 
security  of  my  computer  and  to  my  privacy 

This  column  is  far  too  short  to  list  all  the 
ways  HTML  can  be  a  security  or  privacy 
threat  —  Google  gets  77,000  hits  for  “pri¬ 
vacy  +  ‘HTML  e-mail’”  and  20,000  for  “secu¬ 
rity  +‘html  e-mail’” —  but  here  are  a  few: 


CERT  has  posted  a  dozen  or  so  warnings 
of  ways  that  HTML  e-mail  can  be  used  to 
exploit  vulnerabilities  in  buggy  software. 
Some  of  the  exploits  are  quite  impressive 
—  see  the  CERT  Web  site  (www.cert.org) 
for  more  information. 

But  the  big  threats  do  not  depend  on 
flaws  in  software  to  work  —  they  operate 
even  if  the  software  is  totally  bug-free 
because  they  use  features  in  HTML.  Kiss 
your  privacy  —  what  shreds  you  still  might 
have  left  on  the  Internet  —  goodbye  if  you 
or  your  company  accepts  HTML  e-mail. 

The  sender  of  the  message  can  find  out 
when  and  on  what  computer  you  read  the 
e-mail. That  person  also  can  find  out  if  you 
forwarded  the  e-mail  to  someone  else,  and 
who  the  someone  else  is  and  return  a  copy 
of  the  cover  letter  you  sent  with  the  e-mail 
to  that  someone.  The  same  is  true  if  that 


www.nwfusion.com 


someone  replies  to  you  or  forwards  the 
e-mail  to  a  third  person  and  remains  the 
case  as  long  as  the  original  email  is  includ¬ 
ed.  The  original  HTML  email  sender  also 
can  stick  a  cookie  including  your  email 
address  on  your  machine  that  can  later  be 
read  by  cooperative  Web  sites,  even  if  you 
are  trying  to  be  anonymous. 

There  are  many  more  threats  and  I  could 
go  on,  but  you  get  the  not  so  pretty  picture. 
Sorry  Mark,  I  give  the  idea  of  HTML  email 
a  minus  9  on  your  Gearhead  scale. 

Disclaimer:  This  time  of  year,  as  part  of  its 
fund-raising  effort,  Harvard  is  very  pretty. 
But  the  university  has  expressed  no  opin¬ 
ion  on  pretty  email. 

Bradner  is  a  consultant  with  Harvard 
University's  University  Information  Systems. 
He  can  be  reached  at  sob@sobco.com. 


MSSP 

continued  from  page  19 
monitoring. 

Many  say  deciding  whether  to  outsource 
security  monitoring  and  which  MSSP  to 
choose  is  a  challenge. 

“Pitfalls  abound  in  outsourced  security 
services,  not  just  in  the  U.S.,  but  in  Europe 
and  Middle  Eastern  countries,  too, ’’says  Stan 
Kiyota, chief  IS  security  officer  at  Booz-Allen 
&  Hamilton,  whose  global  network  spans  75 
countries  to  serve  1 1 ,000  employees. 

Kiyota  said  the  big  consultancies, such  as 
Deloitte  and  Touche,  are  security  “general¬ 
ists”  that  may  sign  a  contract  for  managed 
security  but  then  have  to  go  out  and  hire 
the  expertise. 

Kiyota  says  larger  companies  might  be 
more  financially  stable, so  there’s  less  worry 
that  they  might  go  out  of  business  sudden¬ 
ly,  as  Pilot  Network  Services  did  last  year. 

Smaller  MSSPs,  such  as  Counterpane, 
tend  to  be  more  candid  about  their 
strengths  and  shortcomings,  Kiyota  says. 
But  the  question  for  smaller  MSSPs  is 
whether  they  can  meet  the  needs  of  a  large 
global  corporation. 

Booz-Allen  outsources  its  LAN  password 
management  and  router  management  to 
Techtronics,  and  for  a  few  years  had  a  con¬ 
tract  with  a  European-based  MSSP  which 
Kiyota  declined  to  name,  to  manage  sever¬ 
al  Check  Fbint  Software  VPN  gateways  for 
100  offices  around  the  world. 

But  Booz-Allen  recently  took  back  man¬ 
agement  of  its  VPN-based  firewalls,  in  part 
because  costs,  at  $50,000  per  firewall- 
based  VPN,  seemed  too  high  and  in 
part  because  the  company  prefers 
to  maintain  that  expertise  in- 
house. 

Kiyota  says  outsourcing 
security  does  not  mean  abdi¬ 
cating  responsibility  for  secu¬ 
rity  administration.  And  it 
requires  the  customer’s  IT 
and  legal  departments  to 
draw  up  a  contract  with  the 
MSSP  to  designate  terms  and 
liabilities. 


Annual  U.S.  spending  on  managed 
security  services  is  expected  to  grow 
from  $1.6  billion  this  year  to$2.2 
billion  by  2005,  according  to  IDC. 


This  effort  might  well  be  at  odds  with  the 
MSSPs  whose  “fine  print  in  the  contracts 
generally  says  they  have  no  liabilities”  for 
problems,  including  security  breaches,  that 
might  be  their  fault,  Kiyota  says. 

Kiyota  advised  starting  small  by  letting  a 
chosen  MSSP  provide  just  one  or  two  man¬ 
agement  functions  and  see  how  that  goes 
before  committing  more. 

Choosing  the  right  MSSP  isn’t  easy. 
Services  and  pricing  range  from  about 
$1,700  per  month  for  simple  firewall  man¬ 
agement  to  upwards  of  a  million  dollars  to 
manage  a  full-service  antivirus, VPN,  IDS  and 
firewall  monitoring  on  the  inside  and  out. 

Symantec,  which  operates  a  number  of 
security  operations  centers  around  the 
world, says  many  of  its  customers, including 
the  European  arm  of  Xerox,  have  opted  for 
a  full-service  plan  that  also  involves  having 
Symantec  personnel  at  the  corporate  site. 

Some  MSSPs  claim  to  be  willing  to  moni¬ 
tor  almost  all  vendors’ security  equipment, 
while  others  are  limited  to  specific  brands. 
Some  will  remotely  “patrol”  inside  the  net¬ 
work,  others  restrict  their  services  to  peri¬ 
meter  firewall,  IDS  or  antivirus  protection. 

According  to  IDC, the  total  MSSP  market 
in  the  U.S.  reached  $859  million  last 
year,  with  no  clear  market  leader, 
although  Electronic  Data  Sys¬ 
tems,  IBM,  Counterpane,  ISS 
and  Symantec  are  among  the 
better  known.  Some,  such  as 
Activis  and  Ubizen,  are  bet¬ 
ter  known  in  Europe.  Ubizen 
has  established  a  foothold 
in  the  U.S.  by  opening  a 
security  operations  center 
in  Reston.Va. 

“The  market  is  still  highly 


fragmented, with  consolidation  underway 
says  IDC  analyst  Allan  Carey  That  means 
smaller  MSSPs  likely  will  be  bought  out  if 
they  don’t  go  under. 

VeriSign  bought  Telenisus  and  its  security 
operations  center  to  get  a  foothold  into  the 
MSSP  business. 

There  are  dozens  of  firms  hanging  out 
the  MSSP  shingle:  UUNET,  Foundstone, 
Computer  Associates,  Genuity,  Qualys, 
SAIC.Veritect,  Guardent,  TruSecure  (which 
bought  Three  Pillars),  Secure  Works  and 
NetSolve  are  just  a  few.  Each  MSSP  has  its 
own  list  of  what  it  will  do  for  the  customer. 

Chicago’s  First  American  Bank  and 
Charter  Bank,  of  Wyandotte,  Mich.,  use  the 


■  BY  JENNIFER  MEARS 

FORT  LAUDERDALE,  FLA.  —  Citrix  Sys¬ 
tems  last  week  unveiled  its  NFuse  Elite 
access  portal  server,  which  company  exec¬ 
utives  say  gives  businesses  an  economical, 
easy-to-deploy  alternative  to  more  complex 
enterprise  information  portals. 

NFuse  Elite  provides  secure,  Web-based 
access  to  applications  and  information 
employees  need  based  on  their  roles  with¬ 
in  a  company  says  Jim  McGrath,  manager 
of  product  marketing  for  Web  products  for 
Citrix.  Previously  Citrix’s  portal  offering  con¬ 
sisted  of  a  static  interface  to  centrally  host¬ 
ed  applications,  letting  users  access  appli¬ 
cations  from  any  browser,  rather  than  from 
a  client  application. 

That  browser  interface,  now  called  NFuse 
Classic,  is  still  available.  NFuse  Elite  takes 
Citrix’s  portal  efforts  to  the  next  level  by 
providing  customizable  access  to  more 
than  just  applications. 

“It  can  serve  up  not  only  a  FteopleSoft 
application,  for  example,  but  also  content 
and  information,”  McGrath  says. 

In  that  vein,  Citrix  also  announced  an 
agreement  with  Screaming  Media,  which 
provides  news,  stock  quotes  and  weather 
information,  to  include  syndicated  content 


NetSolve  managed  security  service  for  fire¬ 
walls  and  IDS. 

“They  require  you  to  use  a  certain  type 
of  equipment,”  says  Noel  Lavasseur,  execu¬ 
tive  vice  president  at  First  American.  Both 
banks  use  the  Cisco  PIX  firewall  and  IDS 
in  lieu  of  other  vendor  products  they  had. 

“NetSolve  has  access  remotely  and  they 
always  have  control  of  the  firewall  and  the 
monitoring,”  says  Mark  Parquette,  assistant 
vice  president  of  IS  at  Charter.  “They  do 
this  for  a  monthly  fee  of  about  $1,000  for 
24-7  monitoring.  We  get  reports  as  often  as 
we  want.  As  a  small  bank,  we  don’t  have 
the  staff  to  do  this.  It’s  a  combination  of 
price  and  confidence.”  ■ 


within  the  NFuse  Elite  portal. 

NFuse  Elite  also  provides  wizards  and 
drag-and-drop  menus  for  easy  customiza¬ 
tion  and  portal  creation. 

Citrix  is  partnering  with  other  software 
vendors,  such  as  Documentum  and 
eRoom  Technology,  to  provide  content 
management  and  collaboration  capabili¬ 
ties  within  the  NFuse  portal.  David  Manks, 
senior  director  of  product  marketing  at 
Citrix,  says  more  partnerships  will  follow. 

Citrix  has  played  around  the  sidelines  of 
the  portal  market  since  it  acquired  portal 
maker  Sequoia  Software  last  year.  With 
NFuse  Elite,  it  takes  advantage  of  Sequoia’s 
XML-based  portal  technology  to  build  a 
product  that  can  be  customized  as  busi¬ 
ness  needs  change. 

NFuse  Elite  runs  on  its  own  servers  and 
can  be  deployed  in  conjunction  with 
MetaFrame,  Citrix’s  flagship  software  that 
lets  a  variety  of  devices  connect  to  and  run 
applications  deployed  on  Windows  or  Unix 
servers.  NFuse  Elite  also  can  run  indepen¬ 
dent  of  MetaFrame,  Manks  says.  Base 
requirements  include  Windows  2000  and 
Internet  Authentication  Service. 

NFuse  Elite  is  available  now  and  costs 
$67  per  user,  with  a  minimum  75  users. 

Citrix:  www.citrix.com 
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Qwest  readies  longdistance  submissions 


■  BY  MICHAEL  MARTIN 

Qwest  officials  say  the  regional  Bell  oper¬ 
ating  company  is  on  the  verge  of  winning 
regulatory  approval  to  offer  long-distance 
services  in  several  of  its  home  states,  letting 
it  better  serve  large  businesses  whose  long¬ 
distance  needs  span  the  U.S. 

However,  Qwest  may  not  be  as  close  to 
long-distance  approval  as  company  offi¬ 
cials  are  making  it  appear. 

“It’s  going  to  be  a  long  way  down  the  road 
before  businesses  will  be  able  to  go  to 
Qwest  for  a  national  service,”  says  David 
Rohde,  a  senior  analyst  with  TechCaliber. 

Qwest  has  yet  to  win  the  backing  of  any 
state  public  utility  commission  (PUC)  for 
its  long-distance  submissions  to  the  Fed¬ 
eral  Communications  Commission.  Winn¬ 
ing  over  the  PUCs  is  a  necessary  first  step  to 
any  successful  FCC  application. 

To  make  matters  worse,  at  least  five  states 


■  BellSouth  last  week  unveiled  plans 
to  launch  a  network-based  Multi-pro¬ 
tocol  Label  Switching  VPN  service  in 
its  nine-state  territory  by  year-end. 
BellSouth  says  the  managed  service 
will  let  businesses  migrate  to  new 
technology  without  having  to  pay  for 
customer  premises  equipment  or 
administrators.  No  pricing  informa¬ 
tion  was  announced. 

■  Managed  hosting  company  Digex 
now  offers  advanced  management 
for  Oracle  and  Microsoft  SQL  Server 
databases.  The  service  not  only  en¬ 
sures  database  availability,  but  moni¬ 
tors  performance  issues.  Digex  is 
using  Oracle’s  Enterprise  Man¬ 
ager  for  Oracle  and  NetIQ’s  App- 
Manager  for  SQL  Server.  The 
company  says  it  will  work  with  cus¬ 
tomers  to  monitor  specific  aspects  of 
a  database,  detect  and  respond  to 
potential  problems  and  tune  a  data¬ 
base  for  better  performance.  Oracle 
monitoring  for  a  single  database  is 
$250  per  month,  with  a  set-up  fee  of 
$300.  For  SQL  Server,  the  cost  is  $400 
per  month,  with  a  set-up  fee  of  $350. 


are  investigating  allegations  that  Qwest 
gave  some  competitive  carriers  preferen¬ 
tial  access  to  Qwest’s  network  in  return  for 
the  competitors’  backing  of  Qwest’s  long¬ 
distance  bids.  And  to  top  it  off,  Qwest  has 
missed  at  least  three  previous  self-imposed 
FCC  submission  deadlines. 

Qwest  is  the  only  RBOC  yet  to  win  any 
long-distance  approval  from  the  FCC. 

Qwest  recently  said  it  would  submit  ap¬ 
plications  for  five  states  —  Colorado,  Ne¬ 
braska,  North  Dakota,  Iowa  and  Idaho  — 
by  this  week.  Eight  of  the  remaining  nine 
states  will  be  submitted  this  month  or  next 
month,  with  Minnesota  slated  for  a  submis¬ 
sion  in  the  third  quarter,  Qwest  spokesman 
Skip  Thurman  says. 

Under  the  Telecommunications  Act  of 
1996,  an  incumbent  local  carrier  such  as 
Qwest  cannot  offer  long-distance  ser¬ 
vices  in  its  local  service  territory  until  it 


proves  it  has  opened  up  its  network  to 
competitors.Then  it  can  submit  an  appli¬ 
cation  for  long-distance  approval  to 
the  FCC. 

There  are  a  few  steps  an  RBOC  must  take 
before  submitting  an  application  to  the 
FCC.The  first  is  to  pass  a  14-point  checklist 
proving  that  the  RBOC’s  ordering  systems 
can  accommodate  competitive  carriers. 
Qwest  recently  issued  a  statement  saying  it 
had  passed  the  14-point  test  in  13  states. 
Qwest  already  had  issued  a  statement  say¬ 
ing  it  had  passed  the  test  in  Arizona. 

Next,  the  RBOC  must  prove  to  the  state 
PUCs  that  allowing  Qwest  into  the  long-dis¬ 
tance  market  will  serve  the  public  interest. 

“We  have  lots  of  states  where  we’re  doing 
the  final  wrap-ups, ’’Thurman  says. 

Rohde  says  it’s  unlikely  Qwest  will  offer 
long-distance  services  any  time  soon. 

“They’ve  missed  many  of  these  dead¬ 


lines  alreadyf  he  says.  “One  last  summer, 
one  at  the  end  of  [last]  year  and  another 
in  April." 

Even  if  Qwest  does  submit  to  the  FCC, 
there’s  no  guarantee  its  applications  will 
be  approved.  Rohde  says  more  than  half 
of  the  applications  from  the  other  RBOCs 
so  far  have  been  rejected. Those  that  have 
been  successful  came  only  after  the  other 
three  RBOCs  had  learned  from  previous 
mistakes  and  become  more  familiar  with 
the  FCC  process,  Rohde  says.  ■ 
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Backspace  rolls  out  beefed-up  service 


■  BY  JENNIFER  MEARS 

SAN  ANTONIO,  TEXAS  —  Rackspace 
Managed  Hosting,  which  typically  focuses 
on  basic  services  for  small  and  midsize 
companies,  this  week  is  introducing  an 
offering  designed  for  larger  businesses 
seeking  comprehensive  care  at  a  price  be¬ 
low  that  charged  by  high-end  vendors. 

The  new  service,  called  Intensive  Host¬ 
ing,  builds  on  Rackspace’s  existing  host¬ 
ing  platform  to  provide  deeper  services 
such  as  security  and  patching,  backup 
and  recovery  and  server  administration.  In 
the  past,  Rackspace  offered  basic  deploy¬ 
ment,  monitoring  and  scaling  services. 

The  company  has  seen  a  growing  num¬ 
ber  of  large  customers  as  businesses  turn 
away  from  struggling  providers, says  Gra¬ 
ham  Weston,  Rackspace  CEO.  Rackspace 
says  it  has  been  profitable  for  more  than 
a  year. 

“We  realized  we  should  be  adding 
more  managed  services  to  our  quiver,” 
Weston  says. 

Weston  could  not  say  how  much  Rack- 
space  is  investing  in  setting  up  the  new 
service,  which  includes  a  new  business 
unit,  but  says  no  additional  funding  was 
necessary. 

As  the  hosting  market  struggled,  Weston 
says  Rackspace  recognized  a  growing 
void:  a  middle  ground  between  basic 


Rack  it  up 

Rackspace  Managed  Hosting,  which 
has  focused  on  smaller  customers, 
is  rolling  out  a  service  to  meet  the 
needs  of  larger  businesses.  Called 
Intensive  Hosting,  it  is  standard¬ 
ized  on  Microsoft  and  Dell,  and 
includes: 


Security  and  patching. 
Backup  and  recovery. 
Server  administration. 


Reporting  and  trending. 

Hardware,  application  and 
database  monitoring. 

100%  network  uptime  service- 
level  agreement. 


managed  hosting  and  complex,  costly  ser¬ 
vices  from  providers  such  as  Digex,  IBM 
Global  Services  and  Electronic  Data 
Systems. 

“Customers  told  us  they  do  not  require 
all  the  custom  services  they  were  paying 
for  with  other  providers  and  simply  want¬ 
ed  a  lower  price,”Weston  says. 

Marc  Colando,  CEO  of  software  and  ser¬ 
vices  company  Experiential  Group  in  At¬ 
lanta,  says  Intensive  Hosting  offers  what 


his  company  needs. 

“We  had  always  been  interested  in  their 
basic  managed  hosting  services,  but  need¬ 
ed  a  higher  level  of  knowledge  about 
complex  Microsoft  back-end  systems, 
along  with  proactive  hardware  and  soft¬ 
ware  maintenance  for  our  outsourced 
servers,"  says  Colando,  who  has  been  beta¬ 
testing  Intensive  Hosting  for  the  past  few 
months.“Intensive  Hosting’s  numbers  sim¬ 
ply  worked.” 

Rackspace’s  basic  managed  hosting 
supports  Linux  and  Microsoft.  Intensive 
Hosting  will  support  only  Microsoft  ap¬ 
plications  running  on  Dell  hardware,  a 
limited  focus  that  will  help  keep  costs 
down,  Weston  says.  Rackspace  says  it  will 
be  able  to  have  customers  deployed  in 
three  to  five  days,  rather  than  in  weeks  or 
months,  as  some  other  vendors  require. 

Rackspace  will  manage  and  provide 
preventive  maintenance  for  operating  sys¬ 
tems,  Web  servers  and  database  servers, 
while  providing  support  for  application 
issues,  Weston  says. 

Andy  Schroepfer,  president  and  founder 
of  Tier  1  Research,  says  that  by  “not  trying 
to  be  everything  for  everyone,”  Rackspace 
is  providing  quality  managed  services  ■' 
an  affordable  price. 

Intensive  Hosting  is  priced  between 
$2,500  and  $25,000  per  month, deponum: 
on  configurations.  ■ 
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VoIP  transformation  will  take  some  time 


In  certain  instances,  voice-over-IP  ser¬ 
vices  can  offer  attractive  prices  and 
performance,  particularly  when  calling 
to  or  from  developing  nations. 

However,  the  cost  and  quality  of  busi¬ 
ness-class,  public  switched  telephone  net¬ 


work  (PSTN)  calls  within  and  between 
industrialized  countries  is  so  attractive 
that  the  VoIP  business  case  for  most  cus¬ 
tomers  remains  very  difficult.  The  vast 
majority  of  enterprise  calls  are  between 
developed  countries. 
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NetSmart  is  packed  with  all  the  IT  learning  tools 
you  need  to  advance  your  skills,  build  your  knowl¬ 
edge  and  be  successful.  No  more  tedious 
researching  catalogs,  libraries  and  books  for  appro¬ 
priate  options  and  programs.  Just  point,  click  and 
buy  the  training  that  fits  your  style  and  budget  at 
www.nwnetsmart.com. 
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Amazon.com,  Boson  Software,  Cisco  Press,  Global 
Knowledge,  Infinity  I/O  and  LearnKey! 
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Although  pundits  continue  to  proclaim 
that  most  global  providers  will  abandon 
their  PSTNs  for  VoIP  networks  as  earty  as 
next  year,  1  disagree.  Many  factors  will  im¬ 
pede  such  a  rapid  transformation. 

Demand  for  international  VoIP  services, 
although  growing  faster  than  the  PSTN,  is 
modest  and  weighted  heavily  toward 
consumers.  Based  on  current  trends,  IP 
will  not  become  the  predominant  service 
supporting  international  voice  calls  until 
the  end  of  2007. 

VoIP  services  targeted  to  the  enterprise 
market  are  immature  compared  with  sim¬ 
ilar  PSTN  services. They  offer  few  features 
or  service-level  agreements. 

The  financial  commitment  required  to 
transform  global  networks  to  VoIP  is  very 
high  —  it  will  take  trillions  of  dollars. 

Availability  of  business-class  VoIP  ser¬ 
vices  is  limited  to  no  more  than  55  coun¬ 
tries  today. 

Regulatory  barriers  impede  rapid  expan¬ 
sion  of  VoIP  services.  In  many  countries,  it 
will  take  years  for  the  control  exercised  by 
government-run  monopolies  to  wane. 

Along  select  inter-regional  routes,  many 
of  the  largest  global  and  regional  providers 
already  have  begun  to  migrate  voice  traffic 
to  quality  of  service  (QoS)-based  multiser¬ 
vice  cores.  There  are  strong  advantages  to 
building  an  all-IP  backbone  network  on 
high-volume  international  routes  wherever 
a  carrier  doesn’t  have  an  infrastructure. 

Global  carriers  such  as  AT&T  and  Cable 
&  Wireless  rely  on  local  carrier  partners  to 
deliver  their  voice  traffic  in  most  countries. 
Thus,  these  providers  have  strong  incen¬ 
tives  to  build  IP-only  networks.  Of  the  top 
five  global  providers,  only  C&W  has 
announced  its  intention  to  abandon  its  cir¬ 
cuit-switched  net  for  IRbeginning  in  2003. 

But  current  business-class  VoIP  services 
do  not  mirror  the  functionality,  scalability, 
performance  or  geographic  reach  of  the 
PSTN.  Given  the  economic  climate,  most 
providers  will  not  have  the  resources  to 
pursue  anything  other  than  an  incremental 
VoIP  build-out  strategy  for  at  least  the  next 
two  years.  Thus,  like  providers  themselves, 
customers  will  use  a  combination  of  PSTN 
and  VoIP  services  for  many  years. 

It’s  important  to  keep  in  mind  that  the 
biggest  proponents  of  converged  WAN  ser¬ 
vices  are  the  leading  telecom  equipment 
vendors  and  global  network  operators,  not 
customers.  By  migrating  traffic  onto  a  uni¬ 
fied  transport  platform,  suppliers  stand  to 
achieve  big  cost  savings  before  their  enter¬ 
prise  customers.The  majority  of  benefits  to 
enterprise  customers  will  follow  —  once 
the  technologies  mature  in  terms  of  avail¬ 
ability,  price,  performance  and  features. 

Companies  that  want  to  implement  con¬ 
verged  WANs  must  balance  risks  that 
include  inconsistent  service  delivery 
against  promised  cost  savings.  Do  the  busi¬ 
ness  case  . . .  and  then  consider  the  other 
factors  1  mentioned. 

Pierce  is  a  research  fellow  at  Giga  Infor¬ 
mation  Group.  She  can  be  reached  at 
lpierce@gigaweb.  com. 
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Appian  makes  waves  with  metro  Ethernet 

After  big  NTT  deal,  start-up  hopes  success  continues  with  platform  that  carries  Ethernet  over  SONET 


■  PROFILE:  APPIAN 


Location: 

Acton,  Mass. 

Founded: 

March  1999 

Employees: 

118 

Primary 

product: 

Optical  Services  Activation  Platform,  a  metropolitan-area  optical 
access  system  that  utilizes  a  carrier's  existing  SONET/SDH 
infrastructure  in  the  migration  to  Ethernet  services. 

Management: 

Mick  Scully,  CEO  and  founder;  Harsh  Kapoor,  vp  of  engineering  and 
founder;  Anand  Parikh,  vice  president  of  product  marketing  &  business 
development  and  founder;  Gregg  Savage,  CFO  and  founder. 

Finances: 

Raised  $80  million  from  Matrix  Partners,  North  Bridge  Venture 
Partners  and  Venrock  Associates,  among  others. 

Customers: 

North  American  and  international  carriers,  including  NTT. 

■  BY  STEPHEN  LAWSON 

ACTON,  MASS.  —  Metropolitan  optical 
start-up  Appian  Communications’  busi¬ 
ness  model  started  with  a  reality  check. 

Seeing  Ethernet’s  high  speed, ease  of  use 
and  wide  availability,  founders  Mick  Scully 
and  Harsh  Kapoor  in  early  1999  envi¬ 
sioned  metropolitan  carrier  networks  that 
would  use  the  LAN  technology  instead  of 
widely  deployed  SONET  rings.  But  first 
they  asked  carriers  what  they  needed. 

Scully  recalls  talking  with  a  potential 
customer  in  lower  Manhattan  that  had 
dozens  of  0048  SONET  rings. 

“That  was  an  eye-opening  discussion. . . . 
They  were  not  going  to  want  to  build  more 


■  At  SuperComm  last  week,  Lucent 
announced  a  universal  gateway  that 
lets  service  providers  deliver  dial-up 
IP  remote  access  and  voice-over-IP 
services  for  their  business  and  resi¬ 
dential  customers. 

APX  8100  Universal  Gateway  is 
targeted  at  large  carriers,  wholesale 
service  providers  and  ISPs  with  voice 
and  data  IP  services  requirements 
such  as  managed  modem  applica¬ 
tions.  It  supports  up  to  12  DS-3s  or 
8,064  calls,  and  its  universal  port  tech¬ 
nology  lets  service  providers  support 
voice,  data,  fax  and  VPN  calls  on  any 
port  using  a  single  digital  signal 
processor  module,  Lucent  says.  The 
APX  8100  will  be  available  in  the  third 
quarter. 

■  Atrica  last  week  announced  a  new 
hardware  platform  release  for  its 
A-8800  Optical  Ethernet  metropolitan 
core  switch.  Release  2.0  of  A-8800 
includes  Ethernet-optimized  optical 
capabilities,  including  integrated 
Ethernet/dense  wavelength  division 
multiplexing.  The  DWDM  system 
offers  up  to  32  protected  channels 
with  standard  10G  bit/sec  per  channel 
and  100-GHz  spacing.  Pricing  for  mod¬ 
ules  starts  at  $9,000. 


overlay  networks  to  support  a  different 
technology’ Scully  says.“It’s  not  something 
they  can  migrate  off  of  easily.  It’s  en¬ 
trenched  in  their  business  processes.” 

Appian  took  the  hint  and  set  out  to  cre¬ 
ate  a  platform  that  could  carry  Ethernet 
over  carrier  SONET  infrastructures.  Now, 
despite  a  difficult  business  climate,  the 
company  says  it  has  a  multimillion-dollar 
contract  with  a  big  carrier  and  is  expand¬ 
ing  its  product  line  and  capabilities. 

The  company’s  flagship  product,  Optical 
Services  Activation  Platform  (OSAP)  4800, 
lets  a  service  provider’s  customers  tap  into 
the  existing  metropolitan  network  through 
a  familiar  Ethernet  connection  in  the  box, 
which  typically  would  be  located  in  a 
building  or  corporate  campus.  When 
needs  grow,  rather  than  having  to  boost 
bandwidth  by  traditional  carrier  means,  it 
can  be  added  in  increments  as  small  as 
64K  bit/sec  up  to  Gigabit  Ethernet.  Users 
migrating  from  ATM  or  frame  relay  can 
replicate  the  quality  of  service  those  tech¬ 
nologies  provide,  Appian  says. 

At  the  same  time,  OSAP  lets  the  carrier 
use  Ethernet  where  it  chooses  and  still 
connect  to  a  variety  of  legacy  technolo¬ 
gies  on  the  metropolitan  network,  such  as 
ATM  and  frame  relay.  Enhancements 
announced  May  28  give  customers  and 
service  providers  new  ways  to  Use 
Ethernet  and  SONET,  says  Karen  Barton, 
Appian’s  vice  president  of  marketing. 

OSAP  has  a  hybrid  packet  and  TDM  plat¬ 
form  that  can  handle  traditional  voice  and 
leased-line  traffic,  and  packet  switching. 
Carriers  can  encapsulate  Ethernet  packets 
in  SONET  frames,  or  convert  them  into 
frame  relay  frames  or  ATM  cells  and  feed 
that  traffic  into  a  conventional  device  that 
uses  those  technologies. 

Appian  has  been  focused  on  helping 
carriers  provide  point-to-point  links.  With 
the  recent  announcement,  it  adds  to 
multipoint  services  with  what  it  calls  vir¬ 
tual  Ethernet  rings,  logical  rings  that  can 
link  sites  across  a  carrier’s  existing  metro¬ 
politan  network.  Those  services  will  let 
companies  link  many  sites  with  Ethernet 
just  as  they  would  with  a  LAN.  With  just 
one  OSAP  in  each  city,  a  carrier  also 
could  extend  the  logical  ring  over  a 
national  or  international  network. 

The  company  also  has  expanded  its  line 
with  OSAP  1600,  an  access  device  for 
smaller  customer  sites,  such  as  small 
multitenant  buildings. 


TheTelx  Group,  which  operates  an  inter¬ 
connection  facility  in  New  York,  uses  two 
OSAP  4800s  on  two  floors  to  switch  traffic 
among  its  customers  —  carriers  that  need 
to  link  up  with  other  carriers.  Those  ser¬ 
vice  providers  can  save  money  by  buying 
an  Ethernet  interface  into  the  Telx  net¬ 
work  rather  than  a  traditional  carrier  inter¬ 
face  such  as  a  DS-3,  which  may  cost  10 
times  as  much,  according  to  Hunter 
Newby,  executive  vice  president  of  strate¬ 
gic  planning  at  Telx. 

In  addition,  OSAP  4800  gives  them 
greater  flexibility  in  how  much  bandwidth 
they  can  buy,  which  is  particularly  impor¬ 
tant  for  smaller  customers. 

“When  a  carrier  wants  to  buy  just  [2M 
bit/sec] ,  it  doesn’t  have  to  order  a  DS-3,” 
Newby  says. 

The  carrier  investment  drought  since 
late  2000  has  hit  Appian’s  potential  market 
hard.  Originally  looking  to  competitive 
local  exchange  carriers,  Appian  has  since 
concentrated  on  incumbents. 

A  long  testing  process  with  NTT 
Communications  paid  off  earlier  this  year 
when  Appian  announced  a  contract  with 
the  company  which  is  a  spinoff  of  Japan’s 
incumbent  carrier  and  one  of  that  coun- 
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try’s  largest  service  providers.The  company 
also  has  two  trials  ongoing  in  the  U.S.,  two 
in  Europe  and  several  in  the  works  in  the 
Asia-Pacific  region,  Scully  says. 

Appian’s  approval  by  NTT  gives  it  credi¬ 
bility  with  other  major  carriers,  according 
to  Michael  Howard,  principal  analyst  at 
Infonetics  Research. 

“Once  you  come  out  of  NTT's  labs  and 
become  one  of  their  suppliers,  you’re  pret¬ 
ty  good  for  just  about  any  service  provider 
in  any  part  of  the  world,”  Howard  says. 

The  company  gained  a  head  start  over 
competitors  by  being  the  first  to  use  the 
International  Telecommunication  Union 
X.86  specification  for  Ethernet  over 
SONET,  and  it  can  provide  for  an  impres¬ 
sive  range  of  Ethernet  services  over  that 
infrastructure,  he  says. 

The  network  strategies  of  companies 
indicate  strong  demand  for  a  product 
such  as  Appian’s,  Howard  says.  According 
to  a  recent  Infonetics  survey  of  80  compa¬ 
nies  in  the  U.S.  and  Canada  that  have  or 
soon  will  have  an  optical  connection  to  a 
metropolitan  network,  85%  plan  to  run 
Ethernet  over  it,  he  says. 

Telx’s  Newby  says  he  believes  service 
providers  will  see  the  benefits  of  Ethernet, 
but  he  sees  its  adoption  growing  slowly 
while  SONET  keeps  going  strong. 

“Everything  in  the  market  was  going  to 
take  a  lot  of  time,  but  today,  given  the  eco¬ 
nomic  conditions,  it’s  going  to  take  even 
longer,"  Newby  says. 

Lawson  is  a  correspondent  with  the  IDG 
New  Service’s  San  Francisco  bureau. 


•••••••••••ill 

. •••; 

:::::::::::::: 


>•••••••» 


••••!!!!!!»• 


,,  ^.4/..  ■ 


2!*:  ::: 


Ill 

••••••••••••••• 

!!!!!•••••••••• 

••••••••••••••• 


••••••••••••ft# 

•••••••••••••#• 

••••••••••••••• 

••••••••••••••• 

••••••••••••••ft 


••••vvvvtvvvvvt 

•••••••••••••ft* 

••••••••••••••• 

#  • -  . 

••••••••••••••• 

••••••••••••••• 

••••••••••••••• 

••••••••••••••• 

••••••••••••*** 

#••••*#«©••••? 


•  •  •  •  < 
!•>»( 


'here's  a  Dell  Power  Edge 
with  Windows®  2000  Server 
for  every  kind  of  business. 


SC.Y,_"* 


From  "kind  of  start  up"  to  "kind  of  FORTUNE  500. 


No  matter  the  size  of  your  company,  we've  got  a  server  that  fits.  Dell  PowerEdge  servers  with  Microsoft'  Windows'’  2000  Server  operating  system  grow  with  your  business, 
minimize  downtime,  are  easy  to  integrate  and  even  easier  to  support.  No  matter  what  your  business  needs  -  from  file/print  to  database  management  -  you  can  choose  the  server 
with  the  Microsoft®  Windows’  2000  Server  operating  system  that  is  right  for  you.  And,  by  dealing  direct  with  Dell,  you  get  a  system  customized  to  fit  your  business  needs,  at  an 
affordable  price,  backed  by  our  award-winning  service  and  support.  It's  a  nice  mix  of  exactly  the  server  you  need  with  exactly  the  operating  system  you  want. 


sarrc-as-cash ! 

fcr  cuahftod  customer  v  i 


Dell  Rated  #1  in  U.S.  Small  Business  Server  Market  Share 

Intel®  Server  Market  Share  for  1  to  99  Employees 

IDC 

4th  Quarter 
-  March  2002 


Dell  Small  Business 


PowerEdge"1 1500SC  Server 

Value  Server  with  Power,  Redundancy,  and  Reliability 

•  Intel* *  Pentium*  III  Processor  at  1.13GHz 

•  Dual  Processor  Capable 

•  128MB  133MHz  ECC  SDRAM  (up  to  4GB) 

•  18GB1  (10K  RPM)  Hot-Swap  Ultra3  SCSI  Hard  Drive 

•  Upgradeable  to  438GB  of  IDE  Hard  Drive  Capacity 

•  Embedded  Intel*  PRO  Gigabit  NIC 

•  1-Yr  Next  Business  Day  On-Site  Service1 


$1299 


as  low  as  $37/mo.,  (46  pmts.1")  60  Days 
Same-As-Cash  for  qualified  customers 

E-VALUE  Code:  11507-S20612 


Recommended  upgrades: 

•  Hot-Swap.  Redundant  Power  Supply,  add  $150 

•  NEW  PowerConnect"  2124*  24-Port  Unmanaged  Switch 
with  Gigabit  Port,  add  $299 

•  System  Including  Windows*  2000  Small  Business 
Server,  only  $2599 

PowerEdge"'  2650  Server 

NEW  2U  Rack-Optimized  Performance  and  Scalability 

•  Intel*  Xeon*  Processor  at  1.80GHz 

•  Dual  Processor  Capable 

•  256MB  200MHz  ECC  DDR  SDRAM  (up  to  6GB) 

•  18GB5  (10K  RPM)  Ultra3  SCSI  Hard  Drive 

•  Upgradeable  to  365GB  of  SCSI  Hard  Drive  Capacity 

•  Dual  Embedded  Gigabit  NICs 

•  Dual-Channel  Integrated  Ultra3  SCSI  Controllers 

•  Active  LCD  Screen  for  Monitoring  System  Health 

•  3-Yr  Next  Business  Day  On-Site  Service5 


$2399 


as  low  as  $68/mo„  (46  pmts?0)  60  Days 
Same-As-Cash  for  qualified  customers 

E-VALUE  Code:  11507-S20623 


Recommended  upgrades: 

•  Embedded  Dual-Channel  RAID,  add  $299 

•  Redundant  Power  Supplies,  add  $299 

•  System  Including  Windows*  2000  Server,  only  $3199 


PowerEdge™  2500  Server 

Robust  and  Scalable  Tower  Server 

•  Intel*  Pentium*  III  Processor  at  1.13GHz 

•  Dual  Processor  Capable 

•  128MB  133MHz  ECC  SDRAM  (up  to  6GB) 

•  18GB5  (10K  RPM)  Hot-Swap  Ultra3  SCSI  Hard  Drive 

•  Embedded  Intel*  10/100  NIC 

•  Hot-Swap,  Redundant  Cooling  Fans 

•  3-Yr  Next  Business  Day  On-Site  Service1 


$1899 


as  low  as  $54/mo„  (46  pmts.5”)  60  Days 
Same-As-Cash  for  qualified  customers 

E-VALUE  Code:  11507-S20618 


Recommended  upgrades: 

•  Embedded  Dual-Channel  RAID,  add  $299 

•  PowerConnect*  3024*  24-Port  Managed  Switch,  add  $699 

•  System  Including  Windows*  2000  Server,  only  $2699 


PowerVault™  PV715N  Storage 

NEW  NAS  File  Sharing  Storage 

•  Offloads  Storage  Load  from  Desktops  and  Servers 

•  Snap  Shot  Capability  for  Backing  up  Stored  Data 

•  No  Charge  for  OS  Client  Licenses  up  to  250  Users 

•  Intel*  Celeron®  Processor  at  850MHz 

•  384MB  SDRAM  (up  to  51 2MB) 

•  160GB  IDE  Hard  Drive  -  Four  40GB  Bays 

•  Dual  10/100  Ethernet  Ports 

•  Multi-Platform  Support  of  PC,  Unix,  Apple,  and  Novell 

•  Microsoft®  Windows®  Powered  Operating  System 

•  3-Yr  Next  Business  Day  On-Site  Service1 

•  Price  Includes  $100  Small  Business  Discount 


$1699 


as  low  as  $48/mo„  (46  pmts.5")  60  Days 
Same-As-Cash  for  qualified  customers 

E-VALUE  Code:  11507-S20616s 


Recommended  upgrade: 

•  Broadcom  Gigabit  Network  Card,  add  $299 


Servers  for  any  size  business.  Easy  as 


EK4.L 


Visit  www.dell.com/networkworld  or  call  toll  free  1-877-378-3355 


Call:  M-F  7»-8p  Sat  8a  5p  CT  ^ell 

Pricing,  specifications,  availability  and  terms  of  offer  may  change  without  notice  Taxes  and  shipping  charges  extra,  and  vary.  U.S.  Dell  Small  Business  new  purchases  only.  Oell  cannot  be  held  responsible  for  enors  in  typography  or 

photography 

‘Tins  device  has  not  been  approved  by  tire  Federal  Communications  Commission  for  use  in  a  residential  environment  This  device  is  not.  and  may  not  be.  offered  for  sale  or  lease,  or  sold  or  leased  tor  use  in  a  residential  environment  until  the 

approval  of  the  FCC  has  been  obtained 

■For  a  copy  of  ot»  Guarantees  or  Limited  Warranties,  write  Dell  USA  L.P,  Attn  Warranties,  One  Dell  Way.  Round  Rock.  Texas  78882.  'Service  may  be  provided  by  third  party  Technician  will  be  dispatched,  if  necessary,  following  phone-based 
troubleshooting  lo  leceivo  Next-Business  Dav  service,  Dell  must  notify  service  provider  before  5  pm  (depending  on  service  contract)  customer's  time  Availability  vanes  for  hard  drives,  GB  means  1  billion  bytes:  accessible  capacity  vanes  with 
operating  environment  ’"Monthly  payment  is  based  on  a  48-month  12.99%  interest  rate  for  qualified  business  customers.  Your  interest  rate  and  monthly  payment  may  be  same  or  higher,  depending  on  your  creditworthiness  Minimum  transaction  size 
of  $500  is  leguired  Maximum  aqqieqate  financed  amounts  not  to  exceed  $25,000  Under  60  Days  Same-As-Cash  QutckLoan.  interest  accrues  during  fust  60  days  afier  the  OuickLoan's  Commencement  Date  (which  is  five  days  after  product  ships)  if 
balance  is  not  paid  within  tliese  60  days.  STATED  INTEREST  RATE  AND  60  DAYS  SAME-AS  CASH  OUICKLOAN  ARE  FOR  QUALIFIED  ONLINE  BUSINESS  CUSTOMERS.  OFFER  VARIES  BY  CREDITWORTHINESS  0E  CUSTOMER  AS  DETERMINED  BV 
LENDER  Taxes,  fees  and  shipping  charges  are  extra  and  may  vary  Not  valid  on  past  orders  or  financing  Quickloan  is  from  CIT  Online  Bank  to  Dell  Small  Business  IBSD)  online  customers  with  approver)  credit.  Dell  the  stylized  E  logo,  E-Va!ue.  PowerEdge. 
PowerConnect  and  PowerVauit  are  trademarks  of  Dell  Computer  Corporation  Intel.  Intel  Inside.  Pentium.  Celeron,  and  Xeon  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  United  States  and  other  countries. 
Microsoft  and  Windows  are  registered  trademarks  of  Microsoft  Corporation  ©2002  Dell  Computer  Corporation  All  nghis  reserved 
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CONFERENCE 

August  12th  -  August  15th,  2002 

EXPO 

August  13th  -  August  15th,  2002 

THE  MOSCONE  CENTER 
San  Francisco,  CA 


The  World’s 

Leading  Linux/ 
Open  Source  Event 


LinuxWorld  Conference  &  Expo  is  the  world’s  leading  and  most  comprehensive  event  focusing 
on  Linux  and  Open  Source  solutions.  This  August,  surround  yourself  with  members  of  the  Linux 
community  and  discover  why  companies  such  as  Merrill  Lynch,  Boeing,  Amazon.com,  and  DreamWorks 
are  attending  LinuxWorld! 

•  Attend  Keynotes  and  learn  from  industry  visionaries  devoted  to  Linux  and  Open  Source: 

Scott  McNealy,  Chairman  &  CEO,  Sun  Microsystems,  Inc. 

Sergey  Brin,  Co-founder  &  President  of  Technology,  Google,  Inc. 

Douglas  T.  Elix,  Senior  Vice  President  &  Group  Executive,  IBM  Global  Services 
Charles  Rozwat,  Executive  Vice  President,  Oracle  Corporation 

•  Uncover  the  latest  Linux  and  Open  Source  solutions  from  leading  vendors  such  as  AMD, 

Hewlett  Packard,  IBM,  Intel  and  Sun. 

•  Become  Linux  certified  and  gain  valuable  knowledge  by  participating  in  our  education  program. 

•  Learn  from  our  Feature  Presentation  Case  Study  spotlighting  Red  Hat  and  Amazon.com, 

“Linux:  The  Foundation  for  the  Enterprise”  hosted  by  Michael  Hermann,  CTO,  Red  Hat  Inc; 

Jacob  Levanon,  Ph.D.,  Director,  Systems  Engineering,  IT,  Amazon.com; 

•  join  in  the  tradition  of  “The  Golden  Penguin  Bowl”-  our  live,  fun  and  entertaining  quiz  show. 

•  Mix  and  mingle  with  our  special  conference  faculty  at  a  reception  available  exclusively  for 
conference  attendees! 
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SHAPING  YOUR  NETWORK 


XML  accelerators  help  Web  servers 


■  BY  EUGENE  KUZNETSOV 

Traditional  network  accelerators  speed 
network  applications  by  moving  content 
closer  to  users,  as  in  the  case  of  local  or 
global  caching,  or  by  off-loading  crypto¬ 
graphic  functions  from  servers,  as  with 
Secure  Sockets  Layer  accelerators. 

However,  the  growing  use  of  dynamic 
XML  in  applications  is  giving  network  ad¬ 
ministrators  something  new  to  worry 
about. XML  is  a  verbose  format  that  creates 
performance  problems.  This  has  spurred 
the  emergence  of  a  new  type  of  network 
device:  the  XML  accelerator. 

XML  accelerators  off-load  XML  process¬ 
ing  from  application  servers  and  Web  serv¬ 
ers.  This  is  a  dramatic  departure  from  the 
past,  given  that  XML  processing  tradition¬ 
ally  has  been  considered  to  be  the 
purview  of  the  application,  not  the  net¬ 
work  infrastructure.  The  benefits  of  XML 
accelerators  are  faster  response  times  and 
lower  project  costs. 

There  are  many  types  of  XML  processing 
that  can  be  performed  at  the  network  level 
—  the  two  most  common  are  XML  redirec¬ 
tion  and  Extensible  Stylesheet  Language 
Transformations  (XSLT). 

XML  redirection  is  similar  to  URL-switch- 
ing  load  balancing.The  contents  of  incom¬ 
ing  XML  messages  are  examined  and 
matched  against  user-defined  patterns. 
XML  documents  matching  a  specific  pat¬ 
tern  can  be  sent  to  a  corresponding  server 
for  further  processing,  while  those  match¬ 
ing  another  pattern  can  be  “redirected”  to 
another  server. 

This  lets  application  developers  and  net¬ 
work  administrators  exercise  tight  control 
over  which  transactions  are  processed  on 


■  how  it  works:  XML  accelerator 

XML  accelerators  off-load  XML  data  transformations  from  a  Web 
application  server. 


End  user  sends  XML- 
based  processing  request 
to  Web  application  server. 


XML  accelerator  intercepts  the  request 
and  off-loads  the  XML  data  transforma¬ 
tions,  using  XSL  stylesheets. 

v _ _ _ „  J 
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XML  accelerator 


End  user 


Response  is  converted  from  XML 
to  HTTP  and  sent  to  end  user. 
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which  servers.  Although  the  same  func¬ 
tionality  can  be  implemented  in  software 
running  on  the  corresponding  servers, 
there  are  benefits  to  performing  XML  rout¬ 
ing  in  single-purpose  XML  accelerator 
devices.  Some  of  the  benefits  are  reduced 
latencies  for  XML  redirection  decisions 
and  eased  administration  by  virtue  of  sep¬ 
arating  routing  functions  from  complex 
applications. 

XSLT  is  a  World  Wide  Web  Consortium- 
specified  processing  language  used  to  ren¬ 
der  XML  content  for  HTML  browsers  and 
convert  between  different  XML  formats. 
The  benefits  of  XSLT  include  cross-plat- 
form  capability  (it  is  supported  under  .Net 
and  Java  2  Platform  Enterprise  Edition 
platforms)  and  that  it  is  standard  and 
mature  (XSLT  1 .0  specification  was  issued 
in  1999). 


By  separating  presentation  from  content 
and  data  interchange  from  business  logic, 
it  is  easier  and  less  expensive  to  change 
the  appearance  of  a  Web  site  overnight  or 
connect  to  new  trading  partners.  But  XSLT 
processing  is  resource-intensive,  and  the 
performance  of  some  high-traffic  applica¬ 
tions  can  depend  to  a  significant  extent  on 
XSLT  processing  speed.  XML  accelerators 
can  be  of  considerable  benefit  by  off-load¬ 
ing  and  accelerating  XSLT  processing 
beyond  what  is  possible  using  purely  soft¬ 
ware  solutions. 

XSLT  acceleration  for  Web  servers  can  be 
basically  autoconfiguring  if  the  site  al¬ 
ready  is  set  up  to  use  XSL  stylesheet  pro¬ 
cessing  instructions.  In  this  scenario,  a  spe¬ 
cial  tag  at  the  beginning  of  an  XML  docu¬ 
ment  tells  a  user  agent  which  XSL 
stylesheet  should  be  applied  to  the  docu¬ 


ment  to  make  it  viewable  by  the  user. 

The  stylesheet  is  itself  an  XML  document 
identified  by  the  processing  instruction  us¬ 
ing  a  URL. The  XML  accelerator  intercepts 
the  HTTP  response,  finds  the  processing 
instruction  in  the  XML  document,  retrieves 
the  XSL  via  the  URL,  applies  it  to  the  XML 
document  and  sends  the  resulting  HTML 
to  the  end  user’s  browser.  Even  if  the  site 
has  thousands  of  pages  and  hundreds  or 
thousands  of  XSL  stylesheets,  installing 
and  configuring  an  XML  acceleration  solu¬ 
tion  should  be  simple  because  the  accel- 
erator“learns”the  configuration  as  the  pro¬ 
cessing  instructions  of  XML  documents 
pass  through  it. 

On  the  other  hand,  XML  redirection 
often  involves  more  setup  and  configu¬ 
ration  effort.  Depending  on  the  vendor, 
there  may  be  custom  scripting  or  routing 
rules  language  involved,  but  increasingly 
the  trend  is  toward  XPath-based  redirec¬ 
tion  rules.  Any  existing  routing  or  redi¬ 
rection  functionality  needs  to  be  fac¬ 
tored  and  included  in  the  joint  XML  redi¬ 
rection  rule  set,  which  is  input  into  the 
XML  accelerator. 

An  incoming  XML  document  is  exam¬ 
ined  by  the  XML  router  and  redirected  in 
accordance  with  the  rules  in  effect  for  the 
appropriate  server.  Technologically,  the 
problem  of  XML  redirection  is  not  as  com¬ 
plex  as  XSLT  acceleration,  which  is  part  of 
the  reason  that  the  first  XML  accelerators 
offered  only  XML  redirection. 

Kuznetsov  founded  DataFbwer  Technology 
in  1999  to  provide  content-aware  network 
infrastructure  for  next-generation  protocols. 
He  can  be  reached  at  eugene@datapower 
.com. 


Dr.  Internet 


By  Steve  Blass 


Our  network  uses  internal  DNS  behind  a  Cisco 
PIX  firewall,  where  the  internal  network  uses 
private  addresses  such  as  10.1. 2 Jt.  We  will  be 
setting  up  a  demilitarized  zone  for  the  mail  ser¬ 
ver  that  is  currently  running  behind  the  firewall. 
We  configured  the  PIX  DMZ  network  card  to  use 
the  address  192.168.1.2.  How  can  we  connect 
the  internal  users  to  the  DMZ  servers?  Will  I 
have  to  split  the  DNS?  Or  can  I  use  the  alias  com¬ 
mand  for  the  PIX  to  translate  the  IP  address? 


The  alias  command  should  provide  the  transla¬ 
tion  you  need.  List  the  public  IP  address  for  the 
Web  server  in  the  DMZ  with  your  public  DNS 
service  provider  and  place  an  'ALIAS 
(insidejnterfacename)  public_www_IP_ 
address  DMZ_www_IP_address  255.255. 
255.255’  command  in  your  PIX  configuration. 
When  the  PIX  receives  a  packet  destined  for 
the  public  www  address  from  an  internal  user 
it  will  get  routed  to  the  DMZ  www  address. 


Details  can  be  found  in  the  Cisco  documenta¬ 
tion  at  www.cisco.com.The  PIX  documentation 
is  located  under  Network  Security/Security 
Products.  The  "examples"  pages  show  configu¬ 
ration  details  for  a  variety  of  installation 
scenarios. 

Blass  is  a  network  architect  at  Change 
@Work  in  Houston.  He  can  be  reached  a1 
dr.internet@changeatwork.com. 
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GEARHEAD 
INSIDE  THE 

NETWORK 

MACHINE 

Mark 

Gibbs 


There  are  many  devices  out  there  in 
network  land  that  want  to  tell  you 
how  they  are.  And  they  usually  want 
to  tell  you  because  they  don’t  have 
enough  storage  to  wait  for  you  to  ask. 
Were  talking  the  likes  of  routers, firewalls 
and  switches. 

The  service  these  devices  use  for 
reporting  is  called  syslog,  which  along 
with  SNMP  traps,  logging  to  a  local  text 
file  and  console  logging,  are  the  four 
main  ways  of  reporting  conditions  and 
exceptions.  Actually  the  syslog  service 
can  be  used  by  any  process  —  there  are 
tools  to  syslog-enable  Windows  NT,  for 
example. 

Syslog  is  a  relatively  old  protocol  that  was 
first  documented  as  an  Internet  Engin¬ 
eering  Task  Force  request  for  comments  in 
2001.  This  document,  RFC  3164  (www.ietf 
,org/rfc/rfc3 164.txt)  is  titled  “The  BSD  sys¬ 
log  Protocol”  and  the  RFC  explains: 

“This  protocol  has  been  used  for  the 
transmission  of  event-notification  mes- 


Technology  Update _ 

As  easy  as  falling  off  a  syslog 


sages  across  networks  for  many  years. 
While  this  protocol  was  originally  devel¬ 
oped  on  the  University  of  California  Berk¬ 
eley  Software  Distribution  TCP/IP  system 
implementations,  its  value  to  operations 
and  management  has  led  it  to  be  ported  to 
many  other  operating  systems  as  well  as 
being  embedded  into  many  other  net¬ 
worked  devices.” 

The  architecture  of  a  syslog  logging  sys¬ 
tem  consists  of  machines  generating  mes¬ 
sages  that  are  called  “devices”  (or 
“senders”)  and  machines  that  receive  the 
messages  called  “collectors,”  more  com¬ 
monly  (and  incorrectly)  called  “syslog 
server”  (they  actually  act  as  clients  to 
which  the  devices  “push”  messages). 

A  syslog  system  also  can  include  mac¬ 
hines  that  receive  device  messages  and  for¬ 
ward  them  to  other  machines.  These  are 
called  “relays,”  and  there  can  be  any  num¬ 
ber  of  them  chained  between  a  device  and 
the  final  collector. 

Some  devices  can  send  syslog  mes¬ 
sages  to  multiple  collectors,  and  relays 
might  also  filter  messages  so  for  exam¬ 
ple,  only  critical  messages  are  forward¬ 
ed.  In  this  case  the  relay  also  acts  as  a 
collector  and,  like  a  device,  might  relay 
to  multiple  collectors. 

Syslog  messages  usually  are  transported 
by  User  Datagram  Protocol  (UDP),  al¬ 


though  some  devices  and  collectors  can 
use  TCP  for  reliable  messaging  (remember 
that  UDP  is  only  a  “best  effort” service). The 
port  assigned  to  syslog  is  514,  and  it  is  rec¬ 
ommended  that  the  source  port  also  be 
514  to  indicate  that  the  message  is  from  the 
syslog  process  of  the  sender. 

A  syslog  message  has  three  parts:The  first 
is  called  the  PRI;  the  second  the  HEADER; 
and  the  third,  the  MSG.  The  total  length  of 
the  packet  cannot  exceed  1,024  bytes,  and 
there  is  no  minimum  length. 

The  PRI  part  indicates  the  priority  of  the 
syslog  message  and  consists  of  one  to 
three  characters,  enclosed  in  angle  brack¬ 
ets,  for  example:  “<1>”,“<23>”  and  “<203>” 
are  valid  PRI  contents.  The  PRI  code  is 
formed  from  two  values:  a  facility  code 
and  a  severity  code. 

There  are  standard  facility  codes,  for  ex¬ 
ample  “0”  is  for  kernel  messages  (gotta  love 
*  nix) ,“  1  ”  for  user-level  messages, “2”  for  mail 
system  messages  and  so  on. 

There  also  are  severity  codes:  “0”  is  for 
“Emergency:  system  is  unusable,”  “l”is  for 
“Alert:  action  must  be  taken  immediately” 
and  so  on  (see  RFC  3164). 

The  actual  PRI  code  is  derived  by  multi¬ 
plying  the  facility  code  value  by  eight  (that 
is,  a  three-bit  left  shift)  and  adding  the 
severity  code  value.  The  only  time  the  PRI 
code  should  start  with  “0”  is  if  the  PRI  part 
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is  “<0>“  (for  example  facility  and  severity 
are  both  zero). 

The  HEADER  consists  of  two  fields:  the 
TIMESTAMP  and  the  HOSTNAME.  The 
TIMESTAMP  (formatted  as  “Mmm  dd 
hh:mm:ss”)  immediately  follows  the  trail¬ 
ing  “>”  of  the  PRI  part  and  a  single  space 
character  follows  the  TIMESTAMP  and 
HOSTNAME  fields.  HOSTNAME  should 
contain  the  hostname  or  if  that  isn't  avail¬ 
able,  the  devices  IP  address. 

The  MSG  part  is  what  you  might  guess  — 
a  text  message  that  explains  or  clarifies  the 
PRI  code.  It  has  two  subparts:  a  TAG  of  up  to 
32  characters  that  names  the  program  gen¬ 
erating  the  syslog  message,  and  CONTENT 
that  contains  the  actual  text. 

Any  nonalphanumeric  character  is  con¬ 
sidered  to  terminate  the  TAG  field  and  is 
assumed  to  be  the  starting  character  of  the 
CONTENT  field. 

Typically  this  character  has  been  a  left 
square  bracket  character  (“[‘),  a  colon 
character  (“:”)  or  a  space  character. 

So  from  RFC  3164,  here’s  an  example  of 
a  valid  syslog  message: 

<34>Oct  11  22:14:15  mymachine  su:‘su 
root’  failed  for  lonvick  on  /dev/pts/8 

Next  week,  more  theory  and  a  killer  sys¬ 
log  collector. 

Your  status  to  gearhead@gibbs.com. 


Cool 

Quick  takes 
on  high-tech  toys 

By  Keith  Shaw 


Just  because  you  can  do  something  doesn’t  mean  you 
should.  I  was  reminded  of  this  while  testing  321 
Studios’  DVD  Copy  Plus  software.The  software  lets  you 
copy  DVD  movies  onto  less-expensive  CD-R  disks,  without 
using  a  DVD  writer  drive,  and  only  costs  $40. 

The  software  was  outstanding  in  displaying  the  process 
of  converting  DVD  content  into  a  format  that  could  be 
written  onto  a  CD.  It  includes  a  great  tutorial  that  guided 
me  through  the  steps.  But  there’s  a  catch  —  the  process  of 


Net  Results 


DVD  Copy  Plus 


*****  Company:  321 

3.5  out  of  5  Studios,  www. 

RATING  321studios.com 
Cost:  $40. 

Pros:  Outstanding  tutorial  on 
hew  to  convert  DVDs  to  a 
CD-R  disk.  Software  was 
honest  about  the  length  of 
time  needed  to  convert  the 
content.  Cons:  Needs  a  superfast  computer  and 
Windows  XP  2000  to  reduce  conversion  time;  need 
to  download  updated  driver  for  proper  operation. 


Copying  DVDs:  Is  it  worth  the  time? 


copying  DVDs  onto  a  CD  takes  a  long  time,  maybe  almost 
too  long  to  be  worth  the  effort. 

1,2,3 

There  are  three  steps  in 
the  copying  process.  First, 
you  copy  the  DVD  content 
from  your  DVD  drive  onto 
your  hard  drive.  The  soft¬ 
ware  warns  you  that  you 
will  need  between  4G  and 
6G  bytes  of  space.  Yes, 
gigabytes. 

Then  you  convert  the  DVD 
content  into  a  suitable 
video  format  (MPEG-1, 

MPEG-2  or  DivX).The  soft¬ 
ware  suggests  MPEG-1,  so  I 
went  that  route.  This  is 
where  the  length  of  time 
kicks  in.  Converting  the  file  into  MPEG  format  took  four 
hours  and  20  minutes  on  a  Ftentium  III  computer  with  a 
450-MHz  processor.  Of  course,  the  faster  your  computer  the 
faster  the  process.  The  software  says  the  encoding  process 
could  take  between  two  and  10  hours  for  this  step. 

After  you’ve  created  the  MPEG  file,  you  can  watch  the 
movie  on  your  computer.  Or  you  can  go  to  the  third  step  — 
writing  the  file  onto  a  CD-R  disk.  Because  most  CD-R  disks 
hold  only  80  minutes  of  content,  most  movies  will  be 
burned  from  one  DVD  onto  two  CDR  disks. This  step  did 
not  take  as  long  to  do,  but  there  are  several  issues  that  can 
still  pop  up.  I  found  out  that  during  the  MPEG  file  creation 
that  1  chose  a  wrong  button,  which  created  a  789M-byte 
MPEG  file  that  wouldn’t  fit  onto  my  700M-byte  disk. 


When  you  have  your  final  created  disk, you  can  play  it  on 
a  DVD  player  (as  long  as  it  can  play  the  Video  CD  format). 
Because  of  all  the  compression  that  took  place,  the  final 

version  is  not  the  same  qual¬ 
ity  as  the  original  DVD.  And  if 
you’ve  had  to  split  up  the 
MPEG  file  to  get  the  movie  to 
fit  onto  the  two  CDs,  you’ll 
have  to  switch  disks. 

After  about  five  hours,  I  got 
the  back-up  copy  of  my  DVD 
movie  onto  two  disks.  Gran¬ 
ted,  you  won’t  be  sitting  in 
front  of  the  computer  for  the 
complete  five  hours,  as  the 
software  works  in  the  back¬ 
ground  and  you  can  do  other 
stuff  while  it  is  copying,  con¬ 
verting  or  writing  the  DVD. 
However,  if  you  still  want  to 
attempt  this,  here  are  some  suggestions  that  can  shorten 
the  time  involved: 

•  Get  a  computer  with  a  fast  processor  and  a  huge  hard 
drive.  Also,  make  sure  you  try  this  with  Windows  2000  or  XP 
as  1  had  some  problems  with  Windows  98  Second  Edition. 

•  Make  sure  the  computer  has  a  DVD  drive  and  a  CD 
writer  drive. 

•  Check  that  your  MPEG  files  will  fit  onto  the  CDR  disk 
before  you  convert. 

For  more  information  on  the  DVD  Copy  Plus  software, 
go  to  www.321studios.com. 

Shaw  can  be  reached  at  kshaw@nww.com,  when  he's 
not  trying  to  copy  his  DVD  collection. 
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Open  Source 

Evolution 
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Open  Source  Evolution  .  Part  1 

Despite  the  hype  and  the  fears,  Linux  and  other  open  source  software 
have  made  serious  gains  in  corporate  IT  shops. 

Linux  breaking  news 
Stay  on  top  of  the  latest  Linux  news. 
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Today's  third-round  matchups: 

Linux  creator  Linus  Torvalds  battles 
TeleChoice's  Christine  Heckart  and  Cisco's 
Mario  Mazzola  takes  on  Qwest's  Joe  Nacchio. 
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EDITORIAL 

John  Dix 

What's  ‘broad¬ 
band’  in  the 
policy  debate? 


The  need  for  a  national  broadband  policy  was  one 
of  the  hot  potatoes  tossed  around  the  recent  Vortex 
conference  in  Southern  California,  the  Network 
World  invitation-only  gathering  that  brought  together 
industry  thought-leaders  to  assess  where  the  industry  is 
and  where  it  is  going. 

Intel  CEO  Craig  Barrett  said  unequivocally  yes,  we  need 
a  broadband  policy  because  it  is  in  the  best  economic 
interest  of  the  country.  DSL  and  cable  modems  aren’t 
broadband,  Barrett  said. They  are  incremental  improve¬ 
ments  over  what  we  have  now.  What  he  and  other  tech 
leaders  want  the  government  to  push  for  is  100M  bit/sec 
Internet  links  to  100  million  homes  by  the  end  of  the 
decade. 

Most  other  Vortex  speakers,  however,  look  at  DSL  and 
cable  modem  as  broadband.  Robert  Ftepper,  chief  of  the 
FCCs  Office  of  Plans  and  Policy,  said  80%  of  U.S.  house¬ 
holds  have  access  to  broadband  cable  modem  or  DSL 
service  today  and  that  will  rise  to  90%  by  year-end. 

In  terms  of  acceptance,  Pepper  says  broadband  took 
only  four  years  to  penetrate  10%  of  all  homes,  making  it 
one  of  the  most  rapidly  accepted  technologies  ever,  as 
fast  as  PCs  and  DVD  players. 

That  led  Paul  Johnson,  a  technology  analyst  with  The 
Equality  Research  Department  of  Robertson  Stephens,  to 
question  the  need  for  a  national  broadband  policy 
Broadband  has  one  of  the  fastest  consumer  uptakes  in 
history  and  yet  it’s  broken?  There  is  no  need  for  a  policy, 
he  said,  because  competition  is  the  best  policy 
But  broadband  as  we  know  it  today  isn’t  changing 
things  dramatically  William  Raduchel.CTO  with  AOL, 
pointed  out  that  it  doesn’t  save  the  average  consumer 
any  time.  People  log  on,  do  some  messaging  and  check 
some  stocks.  With  broadband  it  takes  22  minutes  vs.  25 
minutes. 

The  broadband  vision  backed  by  Barrett  and  other  tech 
CEOs  is  a  different  animal.  Connecting  households  to  the 
Internet  at  100M  bit/sec  would  lead  to  substantial  change, 
particularly  in  the  fields  of  entertainment  and  probably  in 
other  areas  we  have  yet  to  envision. 

Getting  there  may,  in  fact,  require  the  government’s  help. 
These  speeds  are  beyond  the  pale  of  current  DSL  and 
cable  technologies.  And  consider  what  government 
development  of  highways  meant  to  trucking  and  com¬ 
merce  and  even  recreation. 

But  we  can’t  argue  sensibly  about  the  need  for  a  na¬ 
tional  policy  until  we  agree  on  what  broadband  is  and 
how  much  bandwidth  is  required  to  achieve  change.  Let’s 
start  there. 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 
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Gan  the  spam 

The  story  “Antispam  tactics”  (www.nwfusion.com, 
DocFinder:  9727)  is  more  of  a  list  of  what  should  be 
done  to  help  alleviate  spam.  It  would  help  if  you 
briefly  explain  why  each  action  should  be  imple¬ 
mented.  What  effect  does  each  action  have  on  the 
overall  performance  of  corporate  or  private  e-mail? 

Herb  Strohsahl 
Senior  communications  engineer 
Securities  Industry  Automation  Corp. 

New  York 

Compulsory  ad-viewing 

Regarding  Scott  Bradner’s  column  “Fast  forward  as 
theft”  (www.nwfusion.com,  DocFinder:  9728):  Good 
grief!  The  notion  that  we  are  required  to  watch  com¬ 
mercials  —  otherwise,  we  are  “stealing”  —  is  ludi¬ 
crous.  Bradner  is  correct  —  shall  we  next  be  forced 
to  read  all  ads  in  magazines  and  newspapers?  If 
we’re  all  legislated  to  view  TV  ads,  what’s  the  incen¬ 
tive  to  ad  agencies  to  develop  high-quality  enter¬ 
taining  commercials  that  people  do  want  to  watch? 

It’s  bad  enough  that  ads  are  being  “pushed” 
through  all  types  of  media  —  even  my  gasoline 
pump.  This  thinking  makes  me  want  to  turn  off  my 
TV  for  good  and  invest  in  Parker  Brothers. 

Debbra  Buerkle 
HR/compensation  and  benefits  manager 

Fluke  Networks 
Colorado  Springs 

Windows  washing 

Anyone  who  reads  “Persistent  doubts  dog  Windows 
2000”  (www.nwfusion.com,  DocFinder:  9729)  and 
doesn’t  think  of  Novell’s  NetWare  as  the  obvious 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief,  Network  World,  1 18  Turnpike  Road,  Southborough,  MA  01 772. 
Please  include  phone  number  and  address  for  aerification. 


solution  to  these  Windows  problems  probably 
wouldn’t  know  what  Linux  is  anymore  than  they 
would  know  how  to  install  it. 

Gartner’s  John  Enck  states, “The  big  issue  is  how  do 
you  update  components  like  Active  Directory.”  The 
answer  is  to  separate  from  the  server  operating  sys¬ 
tem  like  Novell  did  with  eDirectory  As  soon  as  that  is 
done,  you  can  release  updates  to  the  directory  prod¬ 
uct  independent  of  the  server. 

Jeff  Couillard 
Senior  network  engineer 
Clayton  Group  Services 
Novi,  Mich. 

Adios,  frame  relay 

“Braving  the  move  from  frame  relay  to  IP  VPN” 
(www.nwfusion.com,  DocFinder:  9730)  is  an  excel¬ 
lent  story  I’m  in  the  process  of  doing  the  same  thing 
on  my  company’s  WAN,  but  on  a  much  larger  scale. 
I’m  a  bit  concerned  that  Waters  Corp.  has  had  some 
problems  with  ISDN  dial  backup  on  its  Cisco  equip¬ 
ment,  though.  With  the  advent  of  IOS  12.2.8T,  there 
are  solutions  that  are  simple  to  implement. 

Josh  Bovee 
Lenexa,  Kan. 

More  on  multicasting 

“IP  multicasting  comes  of  age”  (www.nwfusion.com, 
DocFinder:  9731)  does  a  good  job  of  explaining  mul¬ 
ticast  routing.  However,  it  doesn’t  mention  Class  D 
addressing  requirements  or  what  a  user  needs  to  get 
started  with  IP  multicasting. 

A  separate  story  should  discuss  user  requirements, 
access  to  dial  users  and  how  a  user  would  imple¬ 
ment  multicasting  across  several  network  providers. 

Jerry  Hanson 
Business  applications  sales  manager 

Sprint 
Omaha,  Neb. 


More  online!  www.nwfusion.com  Find  out  what  readers  are  saying  about  these  and  other  topics.  DocFinder  9725 
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Joel  Snyder 


Next  terror  target:  The  Internet? 


. 


M 


1  ith  all  the  talk  about  terrorism  and  the 
clear  and  present  danger  of  future 
attacks, a  technologists  mind  naturally 
turns  to  information  warfare.  What  if  the  next 
attack  is  not  against  a  building  or  an  airport  or 
a  shopping  mall,  but  against  the  Internet? 

That  would  be  great,  frankly  I’d  rather  go  for  a 
whole  month  with  the  Internet  in  shreds  than  see  another  person  hurt. 

The  question  of  the  Internet’s  vulnerability  to  terrorism  came  up  at  a 
Network  World  Security  Town  Meeting  that  I  co¬ 
hosted  last  month.  (If  you  want  to  hear  about  the 
hottest  issues  in  security  connect  to  www.nwfu 
sion.com,  DocFinder  9726, and  sign  up  for  the  next 
free  town  meeting.)  Could  the  whole  Internet  be 
taken  down?  No.  But  you  could  take  down  such 
huge  chunks  that  there  wouldn’t  be  much  left  to 
worry  about. 

How  could  you  take  down  most  of  the  Internet?  Border  Gateway 
Protocol  (BGP)  is  one  easy  way  to  start.The  entire  Internet  depends 
on  huge  BGP  tables  of  more  than  100,000  routes.  In  the  early  days, 
these  tables  were  validated  against  routing  registries  that  ensured 
bogus  information  could  not  be  injected  into  the  tables.  Nowadays, 
that  doesn't  happen.  Keeping  those  routing  registries  updated  and 
synchronized  is  just  too  expensive  and  inconvenient. 

The  lack  of  a  global  routing  registry  means  that  it’s  fairly  easy  to  ere 


ate  routes  to  nowhere.  It  doesn’t  happen  a  lot,  but  it’s  happened  in  the 
past,  more  than  once.  Someone  gets  mad  at  someone  else,  or  trans¬ 
poses  a  couple  of  digits,  or  lets  information  leak  from  inside  their  net¬ 
work,  and  adds  a  route  to  the  global  tables.  Suddenly  the  packets  stop 
flowing  in  the  right  direction. 

If  a  determined  attacker  were  to  start  injecting  routes  into  the  BGP 
tables,  the  ripple  effects  could  be  enormous.  Every  time  a  route  is 
added,  information  propagates  over  the  entire  Internet  —  the  core 
routers  at  every  major  (and  many  minor)  ISP  have  to  process  the 
update.  Add  enough  bad  routes  in  enough  loca¬ 
tions,  and  the  multiplied  effect  of  processing  and 
passing  all  that  information  around  could  cripple 
routers  around  the  world. 

Is  it  trivial  for  someone  to  take  down  the 
entire  Internet?  No,  definitely  not.  It  would  take 
brains,  coordination  and  control  of  zombie 
systems  and  routers  at  dozens  or  hundreds  of  ISPs.  But  as  we 
learned  when  distributed  denial-of-service  attacks  started  showing 
up,  there  are  a  lot  of  clever  people  on  the  Internet  who  have  mali¬ 
cious  intentions.  All  the  more  reason  to  keep  working  on  your  dis¬ 
aster-recovery  plan. 

Snyder,  a  Network  World  Test  Alliance  partner,  is  a  senior  partner  at 
Opus  One  in  Tucson,  Ariz.  He  can  be  reached  at  Joel. Snyder@opusl 
.com. 


On  the  road  with 

SEMINARS  S  EVENTS 


How  could  you 
take  down  most 
of  the  Internet? 
Border  Gateway 
Protocol  is  one 
easy  way  to 
start. 


INDUSTRY  COMMENTARY 

Frank  Dzubeck 


Increasing  worker  productivity  at  minimal 
expense  has  become  the  mantra  of  the 
corporate  world. To  accommodate  ever-in¬ 
creasing  corporate  demands  for  improved 
productivity  a  new  concept  called  grid  com¬ 
puting  has  evolved.  Essentially  a  grid  is  an 
amorphous  IP  network  that  links  heteroge¬ 
neous  servers, storage  devices, clients, appliances  and  software  to  form 
a  transparent  virtual  resource  that  can  be  dynamically  allocated,  ac¬ 
cessed  and  shared  by  users  and  applications. 

To  be  successful,  a  grid  must  evolve  through  three  stages: 

•  Intragrid:  Allows  interdepartmental  resource  sharing  within  an  orga¬ 
nization.  Helps  minimize  capital  expense  through  the  aggregation  of 
servers  and  storage. 

•  Intergrid:  Allows  partner  access  and  sharing  across  multiple  organi¬ 
zations.  Increases  productivity  and  allows  sharing  of  operational  ex¬ 
penses  through  sharing  of  heterogeneous  databases,  collaborative  de¬ 
sign  and  acceleration  of  product  delivery 
•  Extragrid:  Delivered  by  a  new  class  of  vendors  called  grid  service 
providers,  allows  enhanced  productivity  and  savings  through  services 
such  as  on-demand  e-business,  e-learning  and  e-commerce. 

What  makes  a  grid  different  from  today’s  distributed  computing? 
Everything!  By  definition,  grids  allow  access  to  software  and  to  com¬ 
puter  and  network  resources;  are  language-  and  platform-independent; 
and  allow  dynamic  resource  discovery  and  brokering.To  make  all  this 
happen,  several  key  attributes  must  exist.  A  grid  must  deliver  transpar¬ 
ent  quality  of  service  (QoS)  such  as  seamless  integration  with  IT  re¬ 
sources,  database  abstraction,  distributed  compute  clustering  and  dis¬ 
tributed  workload  management.lt  also  must  transparently  deliver  com¬ 
prehensive  virtualization  no  matter  the  platform,  resource,  location, 
migration  path,  replication  methodology  or  failure  type. 

For  a  grid  to  achieve  even  a  modicum  of  success,  it  requires  a  mini¬ 
mal-cost,  on-demand,  ubiquitous,  broadband-based  network  with  near¬ 
zero  latency  for  connectivity  and  transport.  In  the  intragrid  stage,  this 
can  be  easily  achieved  through  internal  infrastructure  investment  with- 


The  next  killer  app:  A  grid 


in  the  organization.The  problem  begins  in  the  intergrid  stage,  involving 
interconnection  among  different  locations  within  the  company  or 
between  the  company  and  other  organizations. To  make  this  work,  the 
company  must  evaluate  the  availability  of  wide-area  access  at  local- 
area  speeds.To  achieve  zero  latency,  a  grid  requires  Ethernet  access  at 
a  minimum  speed  of  100M  bit/sec  and  backbone  interconnectivity  at 
gigabit-per-second  speeds. 

This  is  feasible, considering  the  high  availability  of  unlit-fiber  capacity 
within  the  metropolitan  and  long-haul  networks  of  global  carriers. 
Infrastructure  technology  exists  for  Ethernet  access  over  cable,  copper, 
fiber  or  wireless.  What  has  not  existed  is  the  business  drivers  or  appli¬ 
cations  requiring  high  on-demand  bandwidth  capacity  A  grid  will  be 
the  “killer”  application  that  acts  as  a  driver  to  force  companies  to 
upgrade  their  bandwidth  requirements.  As  a  direct  result,  a  grid  also 
will  force  carriers  to  deliver  equitably  priced,  usage-based,  on-demand 
bandwidth  transport  capacity. 

The  computing  industry  is  united  in  its  pursuit  of  grid  standards.  IBM, 
Hewlett-Packard  and  Sun  have  announced  strong  initiatives  in  this 
area.  Software  vendors  have  united  around  Web  services  for  applica¬ 
tions  communication.  Experimental  grids  exist  in  education  and  gov¬ 
ernment  communities.The  key  missing  elements  —  management  and 
security  —  are  known  problem  areas  that  are  being  addressed. 

Grid  feasibility  is  a  proven  fact,  but  to  meet  enterprise  demand  by 
2004,  carriers  must  enter  onto  the  scene  this  year. They  must  start  now 
to  plan  and  deliver  economical  yet  profitable  VPN  services,  inclusive  of 
Ethernet  access,  QoS  and  on-demand  broadband  transport,  that  will 
evolve  into  the  next-generation  Internet  required  by  a  grid.The  carriers 
have  found  their  “killer"  broadband  application.  The  perplexing  ques¬ 
tion  is  can  they  given  their  current  morbid  state,  meet  the  bandwidth 
service  demands  of  customers  for  grid  implementation,  or  will  they  be 
the  limiting  factor  to  corporate  and  global  economic  growth? 


What  makes  a 
grid  different 
from  today’s  dis¬ 
tributed  comput¬ 
ing?  Everything! 


Dzubeck  is  president  of  Communications  Network  Architects,  an 
industry  analysis  firm  in  Washington,  D.C.  He  can  be  reached  at 
fdzubeck@commnetarch.  com. 
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Working  out  kinks  in  the 
retail  supply  chain 

Merchants  look  to  supply-chain  management  tools  to  improve  demand 
forecasts  and  trim  operating  costs. 


BY  ANN  BEDNARZ 


A  crystal  ball  would  be  a  welcome  addition  to  any  retailers  arsenal  of 
supply-chain  management  software.  Barring  that,  Shaw’s  Supermarkets 
aimed  for  the  next  closest  thing  —  a  tool  that  helps  the  grocer  model  the 
effects  of  any  tweaks  to  its  supply  chain. 

Shaw’s  uses  i2  Technologies’  Supply  Chain  Strategist  vendors  with  retail-industry  coverage,  such  as  i2, 
software  to  help  align  its  distribution  network,  which  con-  Manugistics  Group  and  SAP 

sists  of  two  distribution  centers,  185  stores  and  a  third-  “Retailers  have  started  to  recognize  that  the  supply 
party  distribution  partner.  chain  really  goes  down  to  the  individual  store,”  Abell 

I2’s  Strategist  is  a  scenario-based  application  —  one  says.  The  better  retailers  are  addressing  demand  replen- 

module  in  i2’s  suite  of  supply-chain  management  (SCM)  ishment  on  a  store-by-store  basis  and  incorporating 

software  —  which  lets  Shaw’s  input  data  such  as  distrib-  “causal  factors”  into  their  forecasts,  he  says.  For  a  local 

ution  capacity,  store  locations  and  operations  costs. The  event  such  as  a  Little  League  championship,  one  store 

software  crunches  the  data  so  Shaw’s  can  analyze  differ-  might  want  a  healthy  stock  of  lawn  chairs  and  picnic 

ent  alternatives.  accessories. 

Strategist  lets  the  company  perform  what-if  scenarios  Key  to  avoiding  overstocks  and  out-of-stocks  is  commu- 
—  such  as  “what  happens  if  we  increase  the  number  of  nication  among  retailers  and  suppliers.  The  hot  trend  is 
deliveries  made  each  week  to  a  particular  store?” — and  collaborative  planning,  forecasting  and  replenishment 

see  the  answer  in  minutes, says  Mike  Griswold,  strategic  (CPFR).  CPFR  is  a  concept  developed  by  the  Voluntary 
process  leader  for  supply-chain  operations  in  West  Interindustry  Commerce  Standards  (VICS)  association, 
Bridgewater,  Mass.  “One  of  the  things  that  Strategist  pro-  which  has  outlined  nine  steps  that  constitute  CPFR. 
vides  is  the  ability  to  see  how  much  our  decisions  are  CPFR  is  based  on  retailers  and  suppliers  sharing  fore¬ 
going  to  cost  us,”  he  says.  cast  information  that  is  traditionally  kept  guarded  from 

Shaw’s  has  realized  significant  savings  in  storage,  business  partners, 
handling,  inventory  and  freight  costs  by  using  the  Ace  Hardware  is  doing  CPFR  with  26  of  its  suppliers, 
Strategist  tool  to  help  make  decisions  about  which  says  Scott  Smith, department  manager  for  inventory  at  the 

products  and  stores  should  be  served  by  one  of  its  dis-  Oak  Brook,  Ill.,  hardware  chain.The  arrangement  lets  Ace 
tribution  centers.  suppliers  such  as  Manco,  a  manufacturer  of  home 

Incremental  savings  such  as  these  are  key  in  the  retail  improvement  supplies  including  duct  tape, gain  access  to 

industry,  where  profit  margins  are  traditionally  razor-  Ace’s  systems  —  which  are  built  on  JDA  Software’s  E3 

thin.  Retailers  can  boost  the  bottom  line  by  using  SCM  suite  of  SCM  software.  From  there, suppliers  can  collabo- 

software  to  squeeze  out  inefficiencies  that  occur  in  the  rate  with  retailers  on  sales  forecasts  and  promotions  plan- 

process  of  getting  products  to  the  right  stores,  at  the  right  ning  and  even  write  their  own  purchase  orders, 

time  and  in  the  right  quantity  The  appeal  of  CPFR  is  that  it  capitalizes  on  each  party’s 

SCM  software  costs  vary  widely.  In  general,  a  large  particular  strengths,  Smith  says.  Ace  knows  product 

retailer  will  pay  in  the  $2  million  range  for  a  full  ware-  demand  histories  for  each  of  its  stores,  and  Manco  has 

house-management  system  license;  best-of-  product  knowledge  and  insight  into  season- 

breed  apps  cost  $200,000  to  $400,000,  esti-  *  ^  U  S  '  0  #  al  and  geographic  buying  trends.  Sharing 
mates  Peter  Abell,  director  of  research  for  .  •  o  ideas  makes  for  more  accurate  forecasting 

retail  at  AMR  Research.  For  a  retailer  to  ©  and  more  efficient  replenishment, 

revamp  its  entire  processes  can  be  astro-  f  |  1 1  J  3  The  extra  sets  of  eyes  are  key.  “When  you 

nomical:  One  large  national  retailer  had  a  1 I w  Mi  do  things  in  isolation, you  don’t  give  people 

multiyear  contract  that  cost  approximately  the  opportunity  to  help  improve  your  prod- 

$50  million,  Abell  says.  1  uct, "Smith  says.The  efficiency  gains  show  up 

Among  the  SCM  projects  given  priority  on  the  bottom  line:  Among  the  initial  group 

todav  "•  those  that  aim  to  improve  store  |V|0P6  0fllif16!  °f  Ace  suppliers  doing  CPFR,  sales  of  their 

level  fore-  asting.  Retailers  want  greater  visi-  *  products  in  Ace  stores  rose  10.3%  in  2001, 

bility  in:  :  ;a!'s  going  on  not  only  at  distrib-  Learn  ^ow  a  new  Product  Smith  says.  For  Ace,  the  collaboration  has 

ution  i  a  t  :  Let  in  each  store,  experts  say  A  numbering  standard  will  let  helped  the  company  triple  its  full-palette 

handfui  of  <  <•'.<  .rs  specialize  in  retail  SCM  companies  track  products  at  the  purchases  —  which  are  more  economical 
software,  such  *s  Retek,  JDA  Software  and  individual  item  level.  than  partial-palette  buys  —  and  trim  20%  off 

Manhattan  . v  s,  and  generalist  SCM  DocFinder.  9721  labor  costs  associated  with  receiving  mer¬ 


chandise  from  its  CPFR  partners. 

Smith  says  the  project  paid  for  itself  in  30  days,  essen¬ 
tially  because  Ace’s  investment  was  minimal.  Ace  paid 
less  than  $50,000  because  the  company  was  a  pilot 
tester  for  the  JDA  Software. 

Ace  is  doing  CPFR  with  26  manufacturers.  Combined, 
the  group  handled  $97  million  in  purchases  last  year 
through  CPFR.  Smith’s  goal  is  to  hit  $200  million  this  year. 

The  scale  of  Ace’s  CPFR  trial  puts  the  retailer  among 
the  very  early  adopters  of  the  technology  While  many 
companies  have  experimented  with  limited  pilots,  few 
do  widespread  CPFR.  Part  of  the  reason  is  that  imple¬ 
menting  CPFR  is  a  labor-intensive  process  and  requires 
that  retailers’  and  suppliers’ systems  can  communicate. 

At  its  most  basic  level,  CPFR  software  is  like  integration 
middleware;  it  provides  a  platform  for  exchanging  trans¬ 
action  data  and  often  depends  on  batch  processes  to 


RETAIL:  AT  A  GLANCE 

The  retail  trade  industry  contributed  $894  billion 
to  the  gross  domestic  product  in  2000,  according 
to  the  Bureau  of  Economic  Analysis. 

AMR  Research  found  that  retailers  on  average 
will  commit  2%  of  revenue  to  their  IT  budgets  in 
2002.That  figure  is  relatively  unchanged  from  2001. 

Supply-chain  optimization  is  an  ongoing  effort. 
AMR  Research  estimates  that  retailers  will  spend 
15%  of  their  IT  budgets  this  year  on  application 
licenses.  Of  that  allotment,  17%  will  go  to  SCM. 
Fora  $1  billion  retail  company  with  an  IT  budget 
equivalent  to  2%  of  its  sales,  that  translates  into 
about  $510,000  spent  on  SCM  software. 


port  data  to  and  from  outside  systems.  As  the  technology 
matures,  CPFR  will  move  toward  process-oriented,  real¬ 
time  collaboration. 

Much  of  the  implementation  complexity  is  because  of 
variations  in  the  data  different  systems  collect, according 
to  Gartner.  Supply-chain  collaboration  software  typically 
looks  at  an  account  or  retail-store  level,  while  existing  sys¬ 
tems  forecast  demand  at  a  regional  level.  Integrating 
CPFR  pilots  with  existing  systems  can  require  companies 
to  reimplement  their  demand-planning  systems  to  rec¬ 
oncile  differences  in  data  granularity  Gartner  says. 

A  lack  of  standards  also  is  a  deployment  deterrent, 
although  progress  is  occurring.  Standards  bodies 
Uniform  Code  Council  and  its  European  equivalent, 
EAN  International,  are  cooperating  to  create  CPFR 
standards,  including  new  XML  schemas.  Last  month,  a 
handful  of  SCM  vendors,  including  JDA,  i2,  Manu¬ 
gistics,  SAP  and  Syncra  Systems,  announced  plans  to 
test  the  interoperability  of  their  CPFR  products  this 
summer.  ■ 
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NetworkWorid  SOI 

Secure  SOHO  routers 


Efficient 
Networks  and 
NetGear 
bundles  earn 
top  honors 


YU  BY  JAMES  GASKIN,  NETWORK  WORLD  GLOBAL  TEST  ALLIANCE 

ou  face  a  tough  balancing  act  when  sending  workers  to  remote  or  home 
offices.You  need  to  equip  them  with  a  broadband  connection,  but  also  you 
need  to  keep  your  network  safe  without  spending  a  bundle.  There  are  still 
more  choices  to  navigate.  Some  DSL  providers  include  a  modem  when  you  sign  up 
for  their  service,  some  don’t.  Others  lease  you  a  modem  or  modem/router,  or  let  you 
select  your  own  from  an  approved  vendor  list. 


To  help  you  decide  which  modem/router  might  work  best  in  your 
network,  we  tested  four  units  (from  Cisco,  Lucent,  Efficient 
Networks  and  2Wire)  that  included  the  DSL  modem  and  two 
routers  (NetGear  and  ZyWall)  that  rely  on  a  broadband  modem  for 
the  connection.  Vendors  opting  not  to  participate  in  our  test  in¬ 
cluded  Allied  Telesyn,  NetVanta,  NexLand,  MultiTech  Systems 
and  SonicWall. 

Growing  competition  in  this  market  means  security  features 
formerly  reserved  for  high-end  routers  (such  as  the  stateful  in¬ 
spection  firewall  feature  we  required  for  inclusion  here)  now 
appear  in  more  affordable  units  (those  less  than  $800  as  required 
in  this  test)  targeting  small  offices.  We  assessed  how  each  fits  this 
new  security  bill,  and  evaluate  each  for  its  ease  of  setup  and 
remote-management  capabilities. 

Efficient’s  5930  Business  Gateway  and  NetGear’s  FR314  earned  the  Network  World 
Blue  Ribbon  award  for  being  best-suited  to  the  small  office  market.  Good  setup, 
strong  security  and  neophyte-friendly  network  management  software  put  these 
units  ahead  of  the  pack. 


Net  Results 


Efficient  DSL  modem/router  combos 

All  necessary  cables  came  in  the  box  with  the  Efficient  5930,  in¬ 
cluding  a  DSL  cable  and  RJ45-to-serial  adapter  for  use  with  the 
console  port. The  Quick  Start  flyer  gave  clear  directions  and  sup¬ 
plied  the  administrative  user  name  and  default  password. 

In  the  name  of  safety  the  Efficient  5930  forced  a  password  change 
immediatelylt  also  presented  a“Firewall  Scripts”  page,  requiring  you 
to  choose  maximum,  medium,  minimum  or  no  firewall  protection. 
Users  can  ignore  security,  but  they  have  to  do  it  consciously 
The  only  setup  hitch  came  when  we  tried  to  configure  the  eight- 
port  10/100Base-T  hub  on  the  5930  before  plugging  in  the  DSL.  Be¬ 
cause  the  DSL  link  was  inactive,  the  5930  disabled  the  Dynamic 
Host  Configuration  Protocol  (DHCP)  server  so  that  clients  couldn’t 
receive  the  IP  address  for  connection  to  the  5930.  Customers  eager  to  start  their  net¬ 
works  before  the  DSL  line  is  active  should  take  note. 

Stateful  inspection  goes  beyond  basic  IP  firewalls  by  tracking  the  state  of  the  com¬ 
munications  between  outside  and  inside  systems.  Incoming  packets  must  contain 
information  about  a  session  in  progress,  not  just  a  valid  IP  address  and  port  number. 
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Products,  services  and 
strategies  for  tying 
teleworkers  to  the 
enterprise. 
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3.1  RATING  3  RATING 
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2.Trating 

Efficient  5930 

Business  Gateway 

NetGear FR314* 

2Wire  HomePortal  1000  ZyWall  10* 

Cisco  827 

Lucent  CellPipe  50 

Company:  Efficient 
Networks,  (877)  937-5273, 
www.efficient.com 
Cost:  $700  Pros: 
Complete  installation 
package,  forces 
password  change,  offers 
security  “scripts"  during 
setup,  modem  backup. 
Cons:  Must  make  DSL 
connection  before 
setting  local  networking. 


Company:  NetGear, 
(888)  638-4327, 
www.netgear.com 
Cost:  $200  Pros: 
Complete  installation 
package,  forces 
password  change, 
automatic  hacker 
protection.  Cons: 
Administration  screen 
sometimes  needs  a 
reboot  during  changes. 


Company:  2Wire 
www.2wire.com,  (877) 
349-3304  Cost:  $200 
Pros:  Stylish,  space¬ 
saving  design,  complete 
installation  package, 
game-playing  profiles 
preconfigured.  Cons:  No 
forced  security  pass¬ 
word  or  activation,  little 
depth  to  firewall  settings. 


Company:  ZyXel 
Communications, 
www.zywall.com, 
(800)255-4101  Cost:  $550 
Pros:  Complete  installa¬ 
tion  package,  automa¬ 
tically  guards  against 
some  attacks,  forced 
password  change.  Cons: 
A  few  extra  clicks 
required  for  firewall 
setup. 


Company:  Cisco, 

(800)  553-6387,  www.cisco. 
com/warp/public/cc/pd/ 
rt/800/index.shtm 
Cost:  $650  Pros:  Com¬ 
plete  installation  pack¬ 
age,  Web  interface  to 
router  information. 
Cons:  Changes  require 
command-line  know¬ 
ledge,  security  settings 
hidden. 


Company:  Lucent, 

(866)  582-3688, 
www.lucent.com 
Cost:  $750  Pros: 
Required  cable  not 
included,  router  setup 
challenging. 

Cons:  Firewall  setup  via 
point  and  click,  store  up 
to  three  configurations 
on  router. 


What's  the  score? 

Efficient  5930 

Business  Gateway 

§* 

p 

2Wire  Home 
Portal  1000 

ZyWall  10* 

Cisco  827 

Lucent 
CellPipe  50 

Security  Control  40% 

3.5 

3.5 

2.5 

3 

2 

3 

Management  Flexibility  30% 

3 

3 

3 

3 

3 

2 

Ease  of  use  &  Installation  20% 

3 

3 

3 

3 

3 

2 

Documentation  10% 

3 

3 

3 

3 

2 

2 

TOTAL  SCORE 

3.5 

3.5 

3.1 

3 

2.8 

2.7 

Individual  category  scores  are  based  on  a  scale  of  1  to  5.  Percentages  are  the  weight  given  each  category  in  determining  the  total  score.  ■  Scoring  Key:  5:  Exceptional  showing  in  th:; 
Defines  the  standard  of  excellence).  4:  Very  good  showing.  Although  there  may  be  room  for  improvement,  this  product  was  much  betterthan  the  average.  3:  Average  showing  in  this  category.  c'’, 
was  neither  especially  good  nor  exceptionally  bad.  2:  Below  average.  Lacked  some  features  or  lower  performance  than  other  products  or  than  expected.  1:  Consistently  subpar,  or  lacking 

reviewed.  ‘Denotes  router-only  products. 
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Efficient's  Web  Manager  interface  mini¬ 
mizes  1  <e  task  of  creating  a  firewall  rule. 
Command  buttons  for  create  and  modi¬ 
fy/view  start  the  rule-making  process, 
with  drop-down  menus  listing  protocols 
and  applications  to  consider  in  the  rule. 
Radio  buttons  let  you  choose  protocols 
(TCP  User  Datagram  Protocol  [UDP], 
Internet  Control  Messaging  Protocol, 
Simple  MailTransfer Protocol  [SMTP]  and 
others),  and  only  port  number  and  IP 
address  number  ranges  must  be  typed  in. 
Security  is  never  a  no-brainer,  but  creating 
rules  doesn’t  get  much  easier  than  picking 
from  a  menu  and  checking  boxes. 

This  Efficient  model  includes  a  56K 
modem  for  backup  so  that  when  a  DSL  link 
drops  and  subsequently  is  revived,  the 
switching  between  the  DSL  and  56K  link 
occurs  automatically  Users  with  a  modem 
or  another  WAN  link  will  appreciate  the 
support  for  an  external  modem  on  the  con¬ 
sole  serial  port. 

The  clean  Web  interface  makes  unit  man¬ 
agement  straightforward.  Eighteen  menu 
options  help  navigation. 

The  most  consumer-oriented  product  in 
terms  of  packaging  and  software  presen¬ 
tation  that  we  tested  is  the  2Wire  Home- 
Portal  1000,  which  comes  in  a  stand-up 
case  that  saves  desktop  space. 

Start-up  help  focuses  on  the  ways  the 
2Wire  product  can  connect  to  a  home  net¬ 
work,  including  Ethernet,  Universal  Serial 
Bus  and  802.1  lb.There  was  not  much 
information  covering  DSL  connection  or 
security 

The  internal  DHCP  server  parcels  out  IP 
addresses  in  the  172.16.x.x  range. This  ad¬ 
dress  range  is  unroutable  (over  the  Inter¬ 
net)  but  vendors  normally  use  the  10.0.0.0 
or  192.168.x.x.  This  unique  addressing 
probably  will  not  interfere  or  overlap  any 
existing  network. 


More  online! 

•  Read  about  why  stateful  firewalls  matter. 

DocFinder:  9722 

•  Check  out  our  test  methodology. 

DocFinder.  9723 


•  SOHO  online  Buyer's  Guide.  Want  more  product 
information  on  network  products  specifically  for  the 
SOHO  maiket?  Head  online  to  our  special  online  Buyer's 
Guide  chart,  where  we  provide  information  on  51  products 
from  14  companies: 
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Going  the  distance 


DSL  speeds  depend  greatly  on  the  distance  from  the  DSL  modem  in  your 
office  to  the  phone  company's  central  office  or  fiber-optic  repeater.  Each 
DSL  modem’s  ability  to  support  long  distances,  and  accurately  measure 
the  distance,  remained  hidden  until  recently. 

DSL  test  equipment  manufacturer  Telebyte  (www.telebytebroadband.com) 
provided  a  Model  458  Line  Module  and  Multiline  Simulator  for  our  testing.  The 
458  tests  modems  over  specified  distances  and  verifies  that  they  perform  to 
specifications. 

The  good  news  is  that  we  could  verify  that  all  four  of  the  DSL  modem- 
equipped  routers  passed  our  distance  tests,  responding  with  minor  variations 
across  a  range  of  1,000  feet  to  20,500  feet. 

—  James  Gaskin 


Propping  up  the  “HomeBortal”  self-tag, 
2Wire  loaded  client  software  on  multiple 
systems  for  easy  sharing.  User  and  network 
management  screens,  heavy  on  icons,  pro¬ 
vide  good  help  supported  by  additional 
control  screens  placed  on  PC  taskbars  and 
context  menus. 

Unwelcome  for  a  home-oriented  system 
was  the  lack  of  a  forced  password  or  any 
depth  to  the  firewall  configurations. 2Wire 
offers  a  decent  set  of  inbound  and  out¬ 
bound  firewall  filters,  but  no  port  control 
options.  All  inbound  data  traffic  gets  fil¬ 
tered  for  known  hacks,  but  to  trust  the  ven¬ 
dor’s  settings  and  filters  because  a  user 
can’t  change  them.HomePortal  includes 
an  upgrade  link  on  its  client  page  for  one- 
click  automated  upgrades. 

Regular  Cisco  users  might  be  shocked, 
but  the  Cisco  827  product  we  tested  ships 
with  color-coded  plugs  and  cables.  A  CD- 
ROM  labeled  Fast  Step  provides  easy,  Web- 
based  installation. 

For  management  purposes,  users  can  see 
all  the  Cisco  10S  settings  via  a  browser,  but 
many  can’t  be  changed  without  knowl¬ 
edge  of  Cisco’s  command-line  interface. 
Still,  we  favor  this  approach  because  the 
Web  interface  won’t  threaten  remote  work¬ 
ers  who  need  to  change  their  own  infor¬ 
mation  but  it  does  let  more  technical  sup¬ 
port  staff  perform  normal  IOS  operations 
when  necessary 

Features  aren’t  lacking  in  the  827,  but 
you  need  to  know  how  to  find  them.  To 
control  which  packets  open  to  stateful  in¬ 
spection,  you  must  dig  into  PDF  docu¬ 
mentation.  We  suggest  a  trip  to  the  Cisco 
Web  site  for  real  examples  of  “context- 
based  access  control.” 

Lucent’s  CellPipe  50  includes  a  serial 
nine-pin  to  25-pin  adapter,  but  not  a  serial 
cable,  which  you  can’t  do  without  in  this 
case.  The  main  configuration  window  is 
archaic,  resembling  the  long-retired  As¬ 
cend  ISDN  router.  Control-n  moves  the  cur¬ 
sor  from  one  item  to  the  next  inside  the 
VT100  display  When  a  service  provider 
sells  the  CellPipe  50,  it  uses  the  Turn-up 
software  for  automatic  configuration. 
Just  hope  you  don’t  have  to  change  a 
configuration  setting  yourself. 

Firewall  configuration  mercifully  avoids 
the  ancient  VT100  display  screen  in  favor 
of  the  surprisingly  adept  SecureConnect 


Manager  application.This  tool  is  a  bit  com¬ 
plex  but  offers  excellent  flexibility  Multiple 
firewall  configurations  can  be  saved,  mod¬ 
ified,  deleted  or  loaded  from  any  Windows 
workstation,  and  three  can  be  stored  on 
the  router. 

Lucent  plays  a  role  in  this  market  be¬ 
cause  of  its  Bell  roots  and  its  ability  to  sell 
equipment  to  providers,  not  because  it 
makes  a  consumer-friendly  product. 

Broadband  routers  only 

The  NetGear  FR314  fits  between  the  DSL 
(or  cable)  modem  and  the  PC.  It  includes 
four  10/ 100Base-T  ports  to  support  PCs 
directly  or  via  a  link  to  a  hub. 

The  setup  wizard  forces  you  to  set  a 
password,  configures  DHCP  based  on  in¬ 
formation  queried  from  your  broadband 
provider  and  automatically  protects 
against  a  variety  of  hacks.  The  134-page 
electronic  manual  provides  clear,  but  not 
deep,  help. 

The  content  firewall  filters  are  set  via  a 
browser-based  administrative  page.  It’s  easy 
to  block  URLs  with  particular  keywords.  To 
check  the  value  of  a  setting, you  can  tap  the 
“Log  only”  function  and  examine  your 
changes  before  completely  blocking  ac- 
cess.Time  settings  also  are  supported. 

Stateful  inspection  rules  are  set  in  the 
Web  administrative  interface.  Check  boxes 
make  it  easy  to  block  all  of  one  type  of  ser¬ 
vice,  such  as  Network  News  Transfer 
Protocol  (NNTP)  or  ping  packets. 

Proxy  servers  can  be  set  for  any  of  the 
eight  major  protocols  controlled  (HTTP 
FTRSMTPPost  Office  Protocol  3,  DNS,  NNTP 
Ping  and  Key  Exchange).  To  create  new 
rules,  type  the  rule  name,  fill  in  the  IP  port 
range  and  pick  the  protocol  and  service 
from  menus. 

The  router  and  firewall  log  files  are  easy 
to  configure  and  view  from  the  left-hand 
menu  tree.  Quick  reports,  including  Web 
site  hits  and  addresses  ranked  by  traffic, 
are  two  clicks  deep. 

Another  consumer-friendly,  router-only 
product,  the  ZyWall  10  included  color- 
coded  cables  and  a  short  Read  me  first 
booklet.lt  offers  one  10/ 100Base-T  Ether¬ 
net  plug  to  connect  to  a  single  PC  or  wiring 
hubs  supporting  up  to  32  systems. 

Installation  was  quick  because  the 
ZyWall  10  provided  IP  addresses  to  clients 


through  DHCP  translated  the  IP  addresses 
when  routing  to  the  broadband  connec¬ 
tion,  and  demanded  the  default  password 
be  changed  before  continuing. 

The  firewall  component  is  enabled  at 
start-up  and  guards  against  denial-of-ser- 
vice  attacks  and  blocks  incoming  BootP 
requests  automatically 

A  content  filter  list  with  13  potential 
blocking  points  and  time  of  day  settings 
mirrors  the  same  function  in  the  NetGear 
router.  You  can  exempt  individual  com¬ 
puters  or  entire  IP  address  ranges  from 
content  filtering.  Packet-filter  rules  are 
built  by  clicking  lists  of  commonly 
blocked  packet  types  and  setting  blocking 
and  logging  choices. 

Summary 

Users  have  to  decide  for  themselves 
whether  they  want  to  use  a  combination 
DSL  modem/router  package  or  employ  a 
separate  DSL  modem  and  router.  The  con¬ 
venience  of  a  single  unit,  offered  by  2Wire, 
Cisco,  Lucent  and  Efficient  must  be  bal¬ 
anced  by  the  value  of  cleanly  separating 
the  phone  company’s  responsibility  from 
your  own  network.  Using  a  NetGear  or 
ZyWall  unit  to  link  a  network  to  the  phone 
company  sets  a  clear  point  of  demarcation 
and  a  clear  point  of  responsibility  for  the 
broadband  provider. 

So  if  you  decide  you’d  prefer  the  con¬ 
venience  of  the  combination  DSL 
modem/router,  we  favor  the  Efficient 
5930  because  of  its  security  depth  and 
ease  of  management. 

If  you  want  to  go  with  the  router-only 
option,  the  differences  between  the  Net- 
Gear  FR314  and  ZyWall  10  are  slim,  but  we 
lean  slightly  toward  the  NetGear  because 
its  security  administration  was  a  tad  easier. 


Gaskin  is  a  Dallas  author  who  has  been 
helping  small  and  midsize  businesses  use 
technology  since  1986.  He  can  be  reached 
at  readers@gaskin.com. 


■  Gaskin  is  a  member  of  the  Network 
World  Global  Test  Alliance,  a  cooperative  of 
the  premier  reviewers  in  the  network  in¬ 
dustry,  each  bringing  to  bear  years  of 
practical  experience  on  every  review.  For 
more  Test  Alliance  information,  including 
what  it  takes  to  become  a  member,  go  to 
www.nwfusion.com/alliance. 

Other  members:  John  Bass,  Centennial 
Networking  Labs,  North  Carolina  State 
University.  Travis  Berkley,  University  of 
Kansas.  Bob  Currier,  Duke  University. 
Jeffrey  Fritz,  West  Virginia  University. 
Thomas  Henderson,  ExtremeLabs,  Inc. 
Miercom,  Inc.,  Network  Consultancy  and 
Product  Test  Center.  David  Newman, 
NetworkTest,  Inc.  Christine  Perey,  Perey 
Research  &  Consulting.  Barry  Nance, 
Independent  Consultant.  Thomas  Powell, 
PINT.  Joel  Snyder,  Opus  One. 
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0  pending  on  IT  security 
is  on  the  rise.  Virus  attacks, 
intrusion  and  other  virulent 
computer  crimes  continue 
to  escalate.  Insuring  the 
safety  of  your  network  is, 
indeed,  a  full  time  job. 


In  this  latest  SPECIAL 
REPORT — exclusively  from 
Network  World  Fusion  — 
well-known  Information 
Security  Authority  Mich 
Kabay  covers  developments 
across  the  entire  field  of  IT 
security,  including:  security 
and  confidentiality  breaches; 
emerging  vulnerabilities 
and  the  latest  information 
on  deadly  new  virus  types. 

Take  advantage  of  this  free 
offer  from  Network  World 
Fusion  and  secure  your  copy 
of  the  SPECIAL  REPORT: 
Information  Security  Midyear 
2002  Update:  An  Overview 
for  Network  Executives  in 
PDF  format  today. 
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The  power  of  users 

Raising  the  technical  skills  of  proficient  users  extends 
IT's  reach  and  reduces  basic  help  desk  calls. 


■  BY  SUZANNE  GASPAR 

With  only  12  IT  pros  to  support  4,000  users,  it’s  no  wonder  the 
help  desk  of  Johns  Hopkins  University’s  School  of  Public  Health 
scrambles  to  field  calls.  Still,  the  burden  on  IT  isn’t  as  large  as  it 
could  be  thanks  to  tech-sawy  power  users  who  help  their  peers. 

to  help.“People  step  up  to  save  the  day,  to 


Support  staffers  can’t  spend  time  show¬ 
ing  users  how  to  create  Microsoft  Word 
tables  or  add  audio  clips  to  a  presenta¬ 
tion,  but  that’s  where  colleagues  come  in. 
Such  folks  can  answer  questions  from 
users  who  lack  basic  knowledge  or  are 
afraid  of  breaking  the  computer. 

Nathan  Kale,  manager  of  user  services 
for  the  school  in  Baltimore,  hasn’t  tracked 
the  phenomenon,  but  hears  from  users 
who  boast  that  a  peer  showed  them  how 
to  do  something  they  had  struggled  with 
for  weeks.“It  reduces  the  number  of  help 
desk  calls,”  Kale  says  of  neighborly  assis¬ 
tance.  “You  know  there  are  always  ques¬ 
tions  out  there.” 

Power  users  are  often  the  first  sources 
co-workers  turn  to  when  a  computer  cri¬ 
sis  occurs,  thanks  to  their  proximity  inter¬ 
est  and  confidence  in  using  technology. 
These  folks’ willingness  to  help  their  peers 
reduces  the  number  of  help  desk  calls, 
speeds  response  times  and  lets  support 
professionals  concentrate  on  more  com¬ 
plex  problems. 

Although  power  users  occasionally 
might  offer  wrong  advice  that  creates 
more  work  for  IT,  training  them  properly 
can  help  keep  the  mundane  help  desk 
and  misguided  user  calls  to  a  minimum. 

Southwest  Airlines  taps  the  talents  of 
its  workforce  by  formally  training  tech¬ 
nically  proficient  workers  whose  main 
job  isn’t  IT,  but  might  be  a  customer  ser¬ 
vice  supervisor. 

Dane  Houliston,  director  of  technical 
services  for  the  airline  in  Dallas,  says  the 
company's  IT  department  began  training 
power  users  at  remote  locations  in  1994. 
IT  targeted  workers  who  investigated 
problems  for  their  peers  and  made  regu¬ 
lar  calls  to  the  help  desk. 

What  makes  a  power  user?  Houliston 
says  the  role  is  voluntary  and  is  filled  by 
those  who  have  an  interest  in  IT  and  want 


get  things  working,  and  that’s  what  makes 
a  power  user,”  he  says. 

With  management’s  blessing,  power 
users  are  relieved  of  their  duties  to  fly 


out  to  headquarters  to  meet  with  the  IT 
staff  for  orientation,  and  for  future 
instructions  as  required.  An  average  of 
six  people  per  year  partake  of  this  kind 
of  day-long  training. 

Basic  training  covers  the  functionality 
of  their  location’s  equipment,  a  review  of 
terminology  used  on  the  calls  and  even 


engages  them  to  help  with  new  installa¬ 
tions.  There’s  an  established  rapport  with 
IT  through  the  process,  Houliston  says.  It’s 
comforting  to  know  the  person  can  plug 
the  cables  in  the  right  place,  pull  an  IP 
address  up  on  a  screen,  check  connec¬ 
tions  if  a  computer  isn’t  working  and  even 
verify  settings. 

Southwest  saves  money  with  this  help 
from  power  users.  Along  with  reducing 
help  desk  calls,  such  assistance  obviates 
the  need  for  IT  to  fly  to  remote  sites  as 
often,  Houliston  says. 

Last  month  at  Southwest’s  Albany,  N.Y., 
location,  a  power  user  investigated  and 


fixed  a  problem  with  a  ticketing  terminal 
that  crashed  when  booting  up.  After  work¬ 
ing  by  phone  with  the  help  desk  to  verify 
connections  and  reboot  the  terminal,  the 
power  user  installed  a  replacement  termi¬ 
nal  that  was  shipped  out. 

To  fix  other  problems  with  ticketing  ter¬ 
minals,  the  power  user  removed  paper- 


jams  and  cleaned  the  sensors  on  ticket 
printers  to  keep  the  terminals  running. 

Putting  power  users  to  work  also  makes 
sense  for  Hilton  Hotels,  according  to 
Damien  Bean,  vice  president  of  corporate 
systems  in  North  America  for  the  hotel 
chain.  Because  Hilton’s  help  desk  is  lo¬ 
cated  at  its  headquarters  in  Beverly  Hills, 
Calif.,  but  the  largest  group  of  users  han¬ 
dle  finance  and  payroll  from  the  Mem¬ 
phis, Tenn., operations  center,  building  the 
skills  of  power  users  in  the  field  makes 
sense. 

Hilton’s  help  desk  teaches  managers  the 
basics  of  the  payroll  and  finance  software 
as  part  of  building  an  on-site  base  of 
power  users. 

“Power  users  get  talking  about  the  busi¬ 
ness  process  and  what  can  be  done  to 
improve  it,”  Bean  says.  Educating  power 
users  who  are  in  a  position  to  influence 
means  the  more  they  know  of  the 
PeopleSoft  and  Oracle  software  limita¬ 
tions  and  opportunities,  the  more  they 
can  help  IT  streamline  the  business 
process. 

Bean  says  IT  transfers  knowledge  to 
power  users  who  have  the  desire,  inter¬ 
est  and  commitment  to  boost  the  skills 
of  their  colleagues.The  simple  questions 
get  handled  within  the  organization,  and 
the  more  complex  questions  are  sent 
to  IT. 

But  Bean  says  there’s  a  downside,  too. 
Power  users  can  become  more  engaged 
with  IT  than  their  normal  business  func¬ 
tion.  “Their  skill  set  is  so  good,  that  they 
want  to  start  rewriting  programs.  They’re 
enjoying  themselves  that  much,”  he  says. 

As  for  Johns  Hopkins’  Kale,  he’s  had  to 
clean  up  after  well-intended  power 
users  who  were  in  over  their  heads.  At 
least  once  a  month  he  hears  about  a 
user’s  problems  with  an  older  machine 
that  isn’t  booting  up.  It  turns  out  the  user 
followed  a  neighbor’s  advice  to  delete 
files  to  free  up  disk  space,  but  mis¬ 
takenly  dumped  the  boot.ini  file  from 
Windows  NT. 

“It’s  like  shadow  support.  If  it  works  it’s 
great,  but  if  it’s  the  wrong  advice,  it’s  more 
work  for  ITTKale  says.“We  reeducate  them, 
instill  the  fear  of  God  and  tell  them  to  call 
IT  the  next  time  they’re  not  entirely  sure 
what  to  do.”  ■ 
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Universal  Edge  IMAS  for  Central  Office  and  co-location  DSL 
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Universal  Edge  600  Series  for  integrated,  high  speed  voice  and 
data  services  over  ATM  that  is  ideal  for  small  businesses  and 
customer  premise  applications 


|  The  UE  IMAS 
i  XpressDSL 


The  UE  IMAS  DSLAM  A 


'CTDI's  Universal  Edge  portfolio 

delivers  multiple  services  and  maximum  network  efficiency * 


Call  today  for  more  information  800.458.0398  or  browse  our  on-line  inventory 


_ 


'  SB 


SharkRack™ 
Systems  are  the 
leading  racking 
solution  for  multi¬ 
vendor  configura¬ 
tions.  We  rack 
Sun™,  Cisco™, 
Compaq™,  HP™ 
and  almost  any 
19”  EIA  standard 
unit.  Qur  current 
Sun™  rack-mount 
kits  include: 


The  SharkRack  LCD  monitor  and 
keyboard  has  TFT  quality  video 
imaging  on  a  sliding  tray  that  is 
only  1.75”  high. 


SunFire™  3800 

4800  series 

servers 

E3500,  E4500 

A5000 

T-3 

Many  more, 
see  web  site 
for  details 


The  NetBotz™  RackBotz  unit 
installs  in  a  cabinet  and  monitors 
internal  conditions.  If  a  problem 
occurs,  it  will  send  out  an  alert  by 
email,  pager,  or  other  device. 


Copyright  SharkRack.  Inc.  SharkRack  is  a  trademark  of  SharkRack  Inc.  All  rights  reserved.  NetBotz  is  a  trademark  of  RackBotz  Inc.  HP  is  a  trademark  of  Hewlett  Packard.  Inc.  Compaq  is 


Wondering  How  To  Get  More 
Out  Of  Your  Data  Center? 


Try  SharkRacks™.  Our  rack-mount  units  will 
safely  house  virtually  any  19”  EIA  standard  unit. 
Have  Suns?  No  problem.  What  about  Cisco  gear, 
or  Compaq,  or  HP  servers?  Sure.  We  can  rack 
that.  With  SharkRack  you  get  a  great  looking 
cabinet.  Our  space  savings  and  cabling  features 
will  organize  your  systems.  Most  importantly,  with 
our  NetBotz  unit  watching  over  your  systems, 
you’ll  always  know  what’s  going  on.  Call  us  today 
or  log  on  for  more  details  to  see  how  we  can  help 
you  save  space,  keep  cool,  and  look  good. 

877-427-5722 
www.sharkrack.com 


vSHARK 

HACK 


a  trademark  of  Compaq  Corp.  Sun  is  a  trademark  of  Sun  Microsystems,  Inc..  Cisco  is  a  trademark  of  Cisco  Systems.  Inc.  All  other  trademarks  are  the  property  of  their  respective  holders 


Seeking  Solutions  ...NTI  Has  The  Answers! 

MULTI-USER 
SERVER 
CONTROL 
IS  EASY! 

Control  from  two  computers 
to  hundreds  of  servers  - 

NTI  has  the  innovative  KVM 
solution  for  you. 


“I  want  flexible  control  I 
without  spending 

a  fortune*!” 


Users  individually  command  or 
simultaneously  share  up  to  512 
computers. 

I  Available  with  2,  4,  or  8  user  ports. 

I  Dedicated  internal 
microprocessors  that  emulate  the 
keyboard  and  mouse 
presence  to  each  attached 
computer  so  all  computers  boot 
error-free  100%  of  the  time. 

Crisp  and  clear  1900x1200 
resolution. 

Desktop  models  for  2  or  4  users. 


kSTl® 

■  «■  ■  ■ 
a  v  ■  ■ 

1275  Danner  Drive  •  Aurora,  OH  44202 
330-562-7070  •  FAX:  330-562-1999 


KEEMUX  KVM  SOLUTIONS 


BUY  ONLINE  at  www.nti1.com 
Email:  sales@nti1.com 


Learn  Key  Trai 


"This  is  the  way  to  learn!" 

Recognized  for  technical  accuracy,  our  dynamic  courseware  lets  you  engage  with, 
relate  to  and  learn  from  experts  right  at  your  desktop. 


•  Engaging  presentation 

•  Motivating  instruction 

•  Accurate  information 

•  Practical  and  proven  -  a  99%  pass  rate! 

•  Convenient  and  affordable 


Take  advantage  of  the  special  offers  below 
and  find  out  why  this  is  the  way  to  learn! 


Special  savings*  on  these  great  titles: 


Win  2000  MCSA  Core  Series 

Win  2000  MCSA  Plus  Series  iwith  a+  e  Netwoit + ) 

Windows  2000  Core  Series 

Windows  XP  Professional 

Office  XP  Professional  Series 

Office  2000  Professional  Series 


15  Sessions 
27  Sessions 

19  Sessions 
6  Sessions 
15  Sessions 
18  Sessions 


$  795 
$  1,445 
$  995 
$  370 
$  585 
$  675 


leg  51,085 
rag.  $1,925 
reg  SI, 355 
'««.$  495 
S  785 
reg  $895 


NETWORK  •  ONLINE  •  CD-ROM  •  VIDEO 

■  icr«t«fl*  •  Ciif  III*  •  ■•••II*  •  <»*«••  •  Lilli*  •  Hilt*  •  IIm>  •  <IW* 

Learn  From 

1.800.865.0165  *  AvailableONLYatlearnkey.com/networld  The  Experts 

C  mi  looeobf.  tM  UU3424W  Oeeetad  UeAs.ieM  nMhOMs  Plfctt  fetad  M  tm  B..1.  7W.  tdl  W.  M  Ihm  pesa*  fe»— M  i.i— ■  tarn  Cod.  #4*U 
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The  Hub  of  the  Hetwork  Buy 


Dial  Access  Solutions 


PCI  Multi-modem  Adapters 


Provide  4  or  8  V.90/V.34  data  and  fax  modems 
in  one  easily-installed  easily-configured  adapter. 


4  and  8-port  adapters 


Scalable  to  32  ports  per  server 
Lowest  CPU  utilization  ^ 


Installs  in  minutes 
Requires  no  interrupts 

Compare  for  yourself ! 

Dial  Access  at  its  best! 


Equinox  Multi-modem  Adapters 


Fax  server 
Dial  access 
Data  collection 
Modem  pooling 
Internet  access 


provide  up  to  44%  savings  over  the 
leading  competitors  of  similar  products 


Try  before  you  buy! 

Call  1  -800-275-3500,  ext.  61 5 
for  a  FREE  30-day  evaluation! 


or  email:  sales@equinox.com 


For  more  infomation  on  Equinox  products  visit  our  website  at  -  www.equinox.com 


an  Avocent  Company 


17” TFT  1U  RACK  MOUNT  DISPLAYS 


-  Adjustable  length  ball 

bearing  slides. 

-  Also  in  black  and  with 

locking  front  panels. 

-  Made  in  the  USA. 


With  Keyboard  and  Trackball 


' 


oard  and  Touchpad 


1-800-729-7654 

Web:  www.recortec.com 
Email:  sales@recortec.com 

RECQRTEC,  INC, 


17”  Display  Only  *  1 620Berryessa  Road  San  Jose,  Ca  95133 

Tel:  (408)  928-1 480  Fax:  (408)  729-3661 


2002 


2001 
KVM  Access 
over  IP 


1999 
KVM  Access 
over  Cat5 


KVM  Access 

Over 

Web  Browser 


If  having  remote  access  to 
your  servers  over  IP  means 
installing  proprietary  software 
or  PCI  cards,  that's  not 
convenient,  anywhere,  anytime 
access.  Introducing  the  new, 
multi-port  TeleReach®. 

TeleReach  is  the  easiest,  most 
secure  way  for  one  or  more 
users  to  remotely  access  and 
manage  multiple  servers 
through  a  KVM  switch,  from 
any  PC  running  the  Internet 
Explorer®  4.0  browser. 

To  see  and  feel  the  power  of 
remote  KVM  access  over  Web 
browser,  call  Raritan  Sales  at 
(800)  724-8090  to  sign  up 
for  a  live  demo  from  your 
own  desktop. 


antan 


ww.rarhan.com 


1988 
KVM  Access 
over  Coax 


800 -724 -SOSO 
732-764-8888 

/  \  ,  V""/ 

KVM  Switch  Technology 

of  R*rltan  Computer, Hie.  Mfyofeft  Inwrrtuf  5<pio <rm  it  a  nglUMVlMliMlfl of  ih*  Co n>"  •  ' 


The  Hub  of  the  Network  Buy 


Firewall  Appliances 


ICSA  Certified 

Box 

System  Software 

•  ....  cr.  ’//  £*£'/'■$*.• 

:V  •  V  'V  -  V 

Features  include: 

•  T  - 

•  High  Performance 

•  Built-in  IPsec  VPN 

•  Stateful  Packet  Inspection 

•  Dynamic  &  Static  NAT 

•  PPP  and  PPPoE  Support 

•  DHCP  Services 

•  DNS  Server 

•  Mobile  VPN  Client  Support 

•  Content  Filtering 

•  Gigabit  Ethernet 

•  Secure  Remote  Management 

•  Email  Proxy 


Sales:  (800)  775-4GTA 
Tel:  (407)  380-0220 
Email:  info@gta.com 
Web:  http://www.gta.com 


Global  Technology  Associates,  Inc. 

Firewall  developers  since  1994 


Security 


GB-1000  Firewall/VPN  Appliance 

High  performance,  firewall  with  unlimited  user 
license,  IPSec  VPN  and  High  Availablity  feature. 


Firewall  Software  Systems 


GB-  Flash 

All  the  power  and  functionality  of  the  GB-1000  on  an  easy  to 
install,  solid-state  flash  memory  module. 


GNAT  Box  Pro 

Simple,  powerful,  high  value  firewall  that  runs  and  boots  from  a 
floppy  diskette  on  a  486  CPU  (or  higher)  and  1 6MB  of  RAM 


RoBoX  Firewall 

Remote  office/branch  office  versatile  firewall 
appliance  for  offices  with  fewer  users. 


There  Is  A  Better  Way  To  Troubleshoot  &  Manage  Your  Network 


OBSERVER 


OBSERVER' 


OBSERVER 

SUITE 


Quickly  Pinpoint,  Pre-solve  & 
Prevent  Network  Problems 


Observer 

$935 


Expert 

Observer 

*2895 


Observer® — Quickly  identifies  network 
trouble  spots  and  costs  thousands  less  than 
expensive  hardware-based  analyzers. 
Observer  provides  metrics,  capture,  and 
trending  for  both  shared  and  switched 
environments. 

•  Full  packet  capture  and  decode  for  over 
500  protocols,  including  TCP/IP  (v4  &  v6), 
NetBIOS/NetBEUI,  XolP,  SNA,  SQL,  IPX/SPX, 
Appletalk  and  many,  many  more! 

•  Switched  mode  sees  all  ports  on  a  switch 
gathering  statistics  from  an  entire  switch  or 
capture/statistics  from  any  port(s) 

•  Long-term  network  trending  collects 
statistical  data  for  days,  weeks,  months, 
even  years 

•  Real-time  statistics  include  Top  Talkers, 
Bandwidth,  Protocol  Statistics,  and 
Efficiency  History 

•  Ethernet  (10/100/Gigabit),  Token  Ring, 
FDDI,  and  Wireless  802. 1 1 — no  need  to 
purchase  separate  tools 


•  Windows ®  98/Me/NT/2000/XP  compatible 

•  Over  4,000  frame  types  recognized 

Expert  Observer — Identifies  problems  and 
provides  Expert  information  in  plain  English. 

Includes  all  of  the  features  of  Observer  plus 
real-time  and  post-capture  expert  event 
identification  and  analysis — new  SQL  and 
Frame  Relay  experts  add  to  the  many  other 
protocols  covered,  time  synchronization 
technology,  and  modeling  of  network  traffic. 

Observer  Suite — The  ultimate  tool  for 
the  most  demanding  power  user. 

Provides  a  full  complement  of  tools  that 
includes  all  of  the  features  of  Expert 
Observer  plus  SNMP  management,  RMON 
console/Probe  and  Web  reporting.  Includes 
one  remote  Probe. 

If  you  have  any  network  problems,  find 
out  the  cause  with  Observer,  Expert 
Observer,  or  Observer  Suite. 


Call  800-526-7919  or  visit  us  online  for  a  full-featured  evaluation: 

www.NETWORKINSTRUMENTS.com 

US  (952)  932-9899  •  Fax  (952)  932-9545  •  UK  S  Europe  +44  (0)  1959  569880  •  Fax  +44  (0)  1959  569881 

£>2002  Network  Instruments,  LLC.  Observer,  ‘‘Network  Instruments"  and  the  “N  with  a  dot”  logo  are  registered  trademarks  of  Network  Instruments,  LLC. 
All  other  trademarks  are  property  ot  their  respective  owners. 
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Marketplace 


If  you’re  responsible  for  safeguarding  your 
organization’s  intellectual  assets  and  enterprise 
networks,  SilentRunner  is  your  next  step  in 
security  technology.  Our  patented  Network 
Security  Analysis  products  provide  you  the  abil¬ 
ity  to  cost-effectively  safeguard  your  electronic 
property  by  correlating  remote  and  internal 
communications  and  data  into  critical  decision¬ 
making  information, 

SilentRunner's  state-of-the-art  visualization 
technology  further  empowers  organizations  to 
solve  complex  problems  by  expediting  network 
security  and  network  management  decision¬ 
making  efforts. 


Information  Rules.  Protect  Yours. 
For  your  free  "Risk  Management 
&  Security"  White  Paper,  visit 
www.silentrunner.com,  or  call 
800-842-2366  ext.  2  today. 


SilentRunner 

www.silentrunner.com 

849  International  Drive  •  Linthicum,  Mil  21090  •  800-842-2366 


Cisco  Router 
and  Switch  Poster 


Cisco 


# — 


Buy  •  Sell  •  Lease  •  Repair  •  New  •  Refurbished  •  Used 

www.wdpi.com  •  877.231.2451  •  cisco@wdpi.com 

121  Cheshire  Lane,  Minnetonka,  MN  55305  U.S.A. 


Routers 


RLD 

PRODUCTS 


Switches 

Hubs 

Voice  Over  IP 

Memory 

Security 

Interface  Modules 
Port  Adapters 
Wireless 


World  Data  Products  introduces  its  new  Cisco 
Router  and  Switch  poster.  It  provides  at-a-glance 
information  on  model  capacities,  interface  cards 
and  available  features. 

The  Cisco  Poster  is  a 
valuable  tool  for 
network  planning. 

Call  877.231.2451  or 
visit  www.wdpi.com 
to  request  your 
FREE  Cisco  Router 
and  Switch  poster. 


.jM 


Over  IP 


note  Server  Management 
0  a  Higher  Level 


The  UltraLink  is  the  Rose  Electronics  answer  to 
Modem  and  Ethernet  remote  access! 

Server  access  over  IP  technology  allows  you  to 
access,  control  and  provide  computer 
maintenance  from  anywhere  in  the  world.  When 
combined  with  Rose  KVM  switch  technology, 
server  management  administrators  can  have 
faster  access  saving  time  and  money. 


With  dial-in,  dial-back  security  and  high- 
resolution  quad  screen  and  SSL  encryption,  the 
UltraLink  raises  the  KVM  industry  bar  in  remote 
server  access. 

A  KVM  industry  pioneer,  Rose  Electronics  is 
recognized  for  superior  KVM  switch  technology,  j 
Product  integrity,  simplicity,  and  reliability  ar<-  \ 
the  hallmarks  of  all  Rose  products. 


Call  Rose  to  learn  more  about  remote  server 
management  today. 


USA  .  CANADA  .  ENGLAND  .  FRANCE  .  GERMANY  .  BENELUX  .  AUSTRALIA  .  SINGAPORE 
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Need  A  Reliable  Rack  Modem? 


Convenient  Dial-Up  Access  to  Your  Equipment  Bays 


\ 


Fault  Tolerant  Modem  (FTM) 


•  Remotely  Configurable 

•  AC  and  -48V  DC  Power  Options 

•  Internal  Filtered  and  Surge  Protected  Power  Supply 

•  Powers  Up  to  Specified  Answer  Rings  and  Baud  Rate 

•  Standard  “AT”  33.6  Kbps  Modem 


Password/Dial  Back  Modem  (SRM) 


Local  RS232  Console  Port  33.6  Kbps  Modem 


•  Up  to  100  Individual  Passwords 

•  Audit  Trail  Log  with  Time/Date  Stamp 

•  Remotely  Configurable 

•  Standard  “AT”  33.6  Kbps  Modem 

•  19"  or  23”  Rack  Options  nebs  Approved 


www.wti.com 


(800)  854-7226 


western  telematic  incorporated  Keeping  the  Net.. .Working! 

5  Sterling  •  Irvine  •  California  •  92618-2517 


Instantly  Search  Gigabytes  of  Text 


dtSearch 


The  Smart  Choice  for 
Text  Retrieval®  since  1991 


"Superb  ...  a  multitude  of  high-end  features"  —  PC  Magazine 

"A  powerful  text  mining  engine  ...  effective  because  of 
the  level  of  intelligence  it  displays"  —  PC  Al 

"Very  powerful  ...  a  staggering  number  of  ways 
to  search"  —  Windows  Magazine 

"Impressive"  —  PC  Magazine  Online 

"A  tremendously  powerful  and  capable 
text  search  engine" —  Visual  Developer 

"Intuitive  and  austere  ...  a 
superb  search  tool"  —  PC  World 


a  ||jdtSearch] ,  * 


Fast,  precision  searching 

♦  over  two  dozen  text  search 
options 

♦  indexed,  unindexed,  fielded 
and  full-text  searching 

Organization-wide  reach 

♦  highlights  hits  in  HTML  and  PDF 
while  keeping  embedded  links 
and  images  intact 

♦  converts  other  file  types  —  word 
processor,  database,  spreadsheet, 
email,  ZIP,  XML,  Unicode,  etc.  — 
to  HTML  for  display  with 
highlighted  hits 

1-800-IT-FINDS 
www. dtsearch.com 

sales@dtsearch.com 


Desktop 


Find  anything, 
anywhere, 
instantly  ♦  $199 


Spider 


Spider  and  search 
Web  sites  ♦  included 
with  all  products 


Search  the  many 
forms  of  data  that 
exist  across  a  large 
enterprise  network 

♦  from  $800 


Publish  a  searchable 
database  to  CD,  DVD 

*  from  $2,500 


I  superb- 

Text  Retrieval 
Engine 

Add  power 
searching  to 
a  product 

♦  extensive 
sample  source 
code  in  multiple 
programming 
languages 

*  from  $999 


Web 


Add  instant 
searching  to  your 
site  ♦  $999  per  server 


Stop  by  www.dtsearch.com 
for  30-day  evaluation  versions 


•Jr-jjjjjjj:;  Di/zziori 

Contact  these  companies  today  to  help  you  with  your  training  needs! 


Boson  Training  ^ 

(813)  925-0700 
|  www.bosontraining.com 
CCIE,  CCNP,  CSS1,  CCNA,  Cisco, 

|  wireless,  CISSP 

PMG  NetAnalyst 

(800)  645-8486 
I  www.NetworkTraining.com 
|  Network  Forensic  Analysis  and 
Security  Training  and  Services 

Infinity  I/O 

(800)  990-0955 
I  www.infinityio.com 
Fibre  Channel  &  SAN  Training 
I  &  Certification 


Learnkey  Inc.  ^ 

(800)  865-0165 
|  www.learnkey.com 
Self-paced  online  CD  network 
|  certification  developer  bus/apps 

NETg 

(800)  828-2050 
I  www.wavetech.com 
IT  Certification  Boot  Camps  with 
I  Guaranteed  Success 

George  Washington  Univ 

(202)  973-1175 
I  www.cpd.gwn.com 
Oracle  DBA  Cisco  CCNA  Java 
wireless  networks 


Si>  vJ-ju  J-j'Ji  ibiLjj  jiz/z 
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NetSmart  Learning  Partner 


The  Hub  of  the  Network  Buy 


Phone:  800-439-8558  or  718-894-7500 
56-29  56th  Drive,  Maspeth,  NY  11378  USA  ~  Fax:  71 8-894-1 573 


m  Cisco  Systems  ■  Extreme  Networks 
■  Juniper  Networks  ■  Foundry  Networks 

www.  digitalwarehouse.  com 

DIGITAL  WMIHOUIE 

Your  Information  Superhighway  Discount  Source e 


■  Nortel  Networks 

■  Lucent  Technology 

■  Alcatel 

■  Riverstone  Networks 


For  too  re  infortoa+ion 
on  ajver+mn^  in 
We+wo rk  Worths  Marketplace 
contact;  Ef)ko  Gapale? 
800-<d11-1108  ext. 
e^opaieSnww.coto 


N^RTELnetworks 


Ctit^ruus 


caaeTRon 

_ systems 


Bay  Networks 


BROWSING  THE  AUCTIONS? 
Consider  What  You  Get: 

National  LAN  Exchange  Auctions 


•  Nortel  Service  Contracts 

•  Nortel  Service  Renewals 

•  Next-Day  Hardware 
Replacement 

•  Free  Technical  Support 

•  One  Year  Warranties 

■  New  and  Used  Equipment 

■  Hundreds  of  Pieces 
in  Stock 

•  Desigryinstall  Services 


•  No  Service  Contracts 

■  No  Service  Renewals 

>  No  Replacements, 

No  Guarantees 

•  No  Support 

>  No  Warranties 

•  Who  Knows? 

■  Sometimes  Available, 
Sometimes  Not 

•  No  Services 


•  Fast  Overnight  Delivery  •  Inconsistent  Delivery 

Make  the  Smart  Choice 


www.NLE.com 
New/Used  •  Buy/Sell 
National  LAN  Exchange 


888-8LANWAN 

(888-852-6926) 

s. 


Products 
purchased  os 

a  result  of 
Marketplace*  ads. 
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d  Hubs 
■f  Routers 
S  Software* 
training 
S  Memory 
products 
S  Ethernet 
Cards 

S  Netware- 
products 
'h  Modems 
S  Testing 
equipment 

I 

'•  ^  Multiplexers 
S  Pile*  Servers 


Advertise  in  the 
Marketplace  and 
watch  your  sales 
come  pouring  in 


Reserve  your 
space  today! 

Call  Direct  Response 
Advertising 
1-800-622-1108 


NetworkWorld’s 

MarketPla 


Extend  the  life  of  your 

Networking  Budget 

f\le>>Ktr»[sje 


Your  Alternative  to  factory  New  products 


A-1  Quality  Pre-Owned  Tested  Equipment 
50-85%  Savings  off  List  Prices 
120-Day  Limited  Warranty 
100%  30  Day-Money  Back  Guarantee 
Large  Inventory,  Same  day  Shipping 
Extended  Warranties  Available 
Professional  Quality  Packaging 


Request  a  Quote  on-line  at: 
www.bizint.com 
e-mail:  info@bizint.com 


Your  global  alternative 
to  factory  new  products 


(877)  438-2494 

or  (315)  458-9606  We  Buy,  Sell,  Trade  and  Lease... 


CISCO.  EXTREME.  JUNIPER.  BAY/NORTEL.  3COM.  FOUNDRY,  CABLETRON 


ONLINE  AUCTION 


_ ASSETS  OF 

Multi  Million 
Dollar  Valuation!! 

(43)  HVAC  Units  •  (19)  United  Power  PDU’s 
(13)  UPS  Systems  •  Metropolitan  Copper  Switch  Gear 
(155)  Turnstone  Copper  Cross  Connect  Chassis 
(14)  Larkin  Dry  Coolers 

_ Equipment  is  located  in  Boston,  ma _ 

Bidding  will  take  place  online  June  1 7-June  2 1, 2002 

Equipment  will  be  viewable  onsite  from  June  12-14,  9am  to  4pm 
at  25 6  Marginal  Street  in  East  Boston  or  by  appointment 


TO  VIEW  EQUIPMENT,  PHOTOS  &  REGISTER: 

www.cowanalexander.com 


For  further  information  or  to  make  an  appointment  for 
inspection,  call  Lance  Surovik:(5 12)  327-9925 

Sole  conducted  by  For  brochure  call 

COWanAlexander,  LLC  toll-free:  888-875-SOLD 


Buy,  Sell  or  Announce 

Network  Products  and  Services 
with  Network  World's  Marketplace 
Call  800-622-1108  ext.  6507 


WKr 
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Mercury  Interactive  Corporation 
is  the  world's  leading  provider  of 
solutions  that  automate  testing, 
quality  assurance  and  applica¬ 
tion  performance  management 
for  e-business,  enterprise  resource 
planning,  and  client/server  ap¬ 
plications. 

We  currently  have  exciting 
opportunities  available  in  our 
Sunnyvale,  CA  headquarters, 
as  well  as  various  locations 
throughout  the  US.  for  the 
following  positions  (all  levels/all 
types): 

•  Software  Engineers 

•  Systems  Analysts/Engineers 
(Consultants) 

•  Network  Engineers/Unix  Ad¬ 
ministrators 

•  Database  Administrators 

•  Technical  Support  Engineers 

Please  send  resume  to  Mercury 
Interactive  Corporation  with  cover 
letter  to  Human  Resource  Dept, 
fax:  408-822-5514  or  email  your 
resume  to  jobs@merc-int.com. 
For  additional  information  on 
these  and  other  positions,  visit 
our  web  site  at  www.mercurv 

active  Corporation  is  an  equal 
employment  opportunity  employer 
committed  to  the  development  of 
a  diverse  workforce 

% 

MKRCURY  INTERACTIVE 


Senior  Software  Engineer 

Utilizing  Tibco,  MSMQ,  JMS 
to  develop  message-driven  dis¬ 
tributed  system  for  commodity 
pricing  information;  develops 
various  user  interfaces  including 
Java  Swing.  HTML,  C#  and 
VB/V8.NET  technologies  and 
implement  3rd  -party  software 
packages  for  energy  trading  risk 
management  system.  Requires 
master  degree  in  computer  science 
or  related  area:  2  years  exp.  with 
energy  trading  risk  management 
system  including  knowledge  in 
financiat/physical  trading,  common 
financial  instruments  and  related 
commodities;  2  years  exp.  with 
distributed  system  architecture 
and  client/server  architecture 
applying  Tibco  ActiveEnterprise, 
RMI,  EBJ,  MSMQ  and  Web 
application  development  applying 
HTML,  and  ASP/ASRNET;  3 
years  programming  experience 
using  Java,  C/C++,  VB,  Oracle, 
MSSQL  and  XML.  Send  resume 
to:  Maximi  Consulting,  Inc.  7019 
Lawler  Ridge,  Houston,  TX 
77055.  Attn:  Mr.  Liu. 


Applicant  sought  for  position  in 
Huntersville,  North  Carolina  as 
Senior  Project  Manager  in  Digital 
Technology  and  consulting  ser¬ 
vices  to  perform  the  role  of  a 
technology  architect  for  a  B2B, 
B2C,  and  technology  solutions 
that  uses  the  Sun  Java  as  the 
core  development  program.  This 
includes  designing  the  N-Tier 
architecture  and  the  solution 
components  for  the  client. 
Includes  the  ability  to  understand 
business  processes  and  client 
requirements  from  a  functional 
view  and  to  translate  them  into  a 
technology  framework.  Includes 
the  ability  to  understand  im¬ 
provements  in  technology  in  this 
fast-paced  world  and  to  incorpo¬ 
rate  the  changes  to  enhance  the 
existing  solution  to  maintain  the 
competitive  advantage.  Manage 
projects  according  to  client 
needs.  Leads  a  team  in  imple¬ 
menting  WEB  development  busi¬ 
ness. 

Education  BS  in  Engineering 
or  Computer  Science  plus  5 
years  experience  in  related 
fields.  Excellent  verbal,  written, 
presentation,  training  technical, 
and  customer  relationship  skills 
are  required.  Strong  interper¬ 
sonal  and  communication  skills 
are  essential. 

Forward  resume  to: 

Genevieve  Dorneles 
Human  Resources 
Intiqua  International  Inc. 

45  Broadway,  1 9th  Floor 
New  York,  NY  10006 


Senior  Programmer  Analyst. 
Student  information  database 
programming,  analysis  of  user 
needs  based  on  Datatel  Colleague 
information  system.  Analyze, 
develop  web  pages  using  Cold 
Fusion  and  other  programming 
tools.  Develop  needed  databases. 
Required  knowledge  and  expe¬ 
rience:  Unidata  query  statements 
to  select  data  from  Datatel 
Colleague  Release  17  SIS  Data¬ 
base.  Download  info  resulting 
from  queries.  Work  with  diverse 
clientele  to  design,  implement 
web  interfaces  for  delivery 
and/or  collection  of  information. 
Develop  Cold  Fusion  apps  using 
SQL  to  access  and  maintain 
data  Write  Java  and  Java  Script 
to  support  Cold  Fusion  apps  with 
client  side  logic.  Develop  and 
maintain  MS  Access  databases, 
MS  Visual  Basic  and  SAS  pro¬ 
gramming,  Base  Salary  $32,802 
per  1 2  months  plus  fringe  benefits. 
Send  two  copies  of  letter  of 
application  and  resume  to:  South 
Dakota  One-Stop  Career  Center, 
Attn:  Laura  Hoyt,  1310  Main  Ave 
S,  Suite  103,  Brookings,  SD 
57006.  Telephone:  (605)  688- 
4350.  Fax:  (605)  688-6761  Must 
refer  to  Job  Order  Number 
SD11 99271. 


Richmond,  Virginia  law  firm 
has  an  opening  for  a  Senior  Web 
Developer. 

The  successful  candidate  will 
build  software  applications  to 
provide  the  technical  architecture 
of  Web  sites  or  Web-based  soft¬ 
ware  products.  Responsibilities 
include  gathering  feedback  from 
design  and  technical  staff  on 
development  needs;  building 
user  interface  applications  and 
back-end  databases;  authoring 
complex  Web  pages;  assisting  in 
project  planning  and  Web  site 
design;  creating  prototypes  and 
functional  specifications  for 
software  projects;  and  creating 
technical  methodologies  for 
engineering  solutions  to  Web 
development  problems.  Addition¬ 
ally,  the  Senior  Web  Developer 
will  meet  regularly  with  other 
information  technology  personnel 
on  specifics  of  projects  and 
deadlines;  and  will  offer  guidance 
on  new  Web  technologies  to  utilize, 
such  as  browsers,  languages, 
and  plug-ins. 

Requirements  for  this  position 
include  a  Bachelors  Degree  in 
Information  Systems,  Computer 
Science  or  Mechanical  Engi¬ 
neering  (or  foreign  equivalent) 
and  5  years  of  progressively 
responsible  experience  using 
VBScript,  J Script,  HTML,  ASP, 
JAVA,  SQL  and  other  program¬ 
ming  and  scripting  languages; 
the  ability  to  conceptualize  and 
plan  long-term  needs  of  Web 
Development  and  to  manage 
related  projects.  The  ideal  candi¬ 
date  will  have  excellent  oral  and 
written  communication  skills; 
leadership  and  project  manage¬ 
ment  experience,  and  the  knowl¬ 
edge  level  to  make  suggestions 
regarding  Web-based  technical 
standards  for  specific  Web  sites 
and  the  Firm  as  a  whole. 

Interested  candidates  should 
submit  a  resume  to:  McGuire 
Woods  LLP,  HR  Recruiting 
Manager,  One  James  Center, 
901  E.  Cary  Street,  Richmond, 
VA  23219. 

EOE 


Venturi  seeks  D/B  App.  Dev.  for 
Sea/Bell  area  projects.  DESC: 
Arch.,  dsgn,  &  dev.  bus.  intell. 
sys.  &  rel.  apps  &  interfaces  util. 
RDBMS,  SQL,  VB,  extract, 
transform  &  load  tools,  reporting 
tools,  Unix  &  Win  o/s.  Dev.  data 
models  &  d/b  schemas.  Mng. 
data  migration  &  sys.  integration. 
Travel  to  client  sites.  REQ:  BS  in 
Engr.,  CS,  Math,  or  Phys.  +  3  yrs. 
full  life  cycle  dsgn,  dev,  &  impl. 
of  c/s  sys,  apps,  interfaces,  & 
RDBMS  util.  SQL,  HLL,  &  Win 
o/s.  1  yr.  performing  data  migration 
&  sys.  integration,  Prem.  sal., 
benes.S  bns.  Pis.  rep:  J.  King, 
Job#CCL-89,  11255  Kirkland 
Way,  Kirkland,  WA  98033. 


OH  Consulting,  Tech.  Services 
Firm  seeks  Programmer  Analyst 
to  code,  test,  debug  simple  and 
complex  maintenance  programs 
and  subroutines;  design,  develop 
large  size  complexity  program 
modules;  design  system  require¬ 
ments.  analyze  business  proce¬ 
dures  and  issues,  convert  them 
to  programmable  form  and  design; 
verify,  test  and  support  such 
requirements,  procedures,  issues 
and  programs;design.  develop 
web-based  reports  tosummarize 
and  analyze  Performance 
Management  metrics  gathered 
from  GSM  wireless  networks; 
maintain  user  database  for  the 
Web-base  applications.  Bachelor's 
Degree  in  Computer  Science  & 
min.  1  yr.  exp.  in  job  or  job  related. 
Must  have  exp.  with  Peri,  Java, 
HTML,  Shell  Script,  and  UNIX. 
Exp.  may  be  gained  before,  during 
or  after  degree.  Resumes 
to  Liberty  Communication 
Services,  Inc.  540  Officenter 
Place,  Ste.  200  Gahanna,  OH 
43230.  No  calls.  EOE 


CIGNIFY,  a  leading  information 
technology  company  in  time  & 
attendance  systems  currently 
seeks  applicants  for  the  following 
position  in  its  Atlanta,  GA  offices: 
Engineering  Manager.  Applicants 
for  this  position  must  have  a 
bachelor's  in  computer  science, 
engineering,  or  related  field  plus 
five  years  of  experience  in 
developing  client/server  and/or 
Web-based  technologies  and 
three  years  of  experience  in 
database  design,  implementation 
(PL/SQL  or  T-SQL)  and  tuning. 
Applicants  should  also  have  one 
year  of  experience  in  VB6.0, 
XML,  and  BizTalk/SOAP  and  two 
years  of  project  management 
experience  directing  lower-level 
engineers.  For  consideration, 
please  forward  your  resume  and 
letter  of  interest  by  mail  to: 
CIGNIFY  Corporation,  Vice 
President,  Engineering,  7000 
Central  Parkway,  Atlanta,  GA 
30328.  Please  do  not  email 
resumes.  EOE 


Bioinformatics  Scientist  to  provide 
technical  assist  on  enterprise 
bioinformatics  software  to  research 
scientists  at  client  sites  in  the 
U.S.  &  overseas.  Determine  & 
analyze  user  requirements  & 
code  customized  solutions  & 
automate  the  analysis  function 
of  software  for  biologists  &  bioin- 
formaticians,  using  base  scripts, 
Perl  &  Java.  Assist  in  the  design 
&  development  of  software  to 
meet  the  needs  of  the  bioscience 
research  community.  Reqd.  Ph.D 
in  biology  or  molecular  biology  & 
2  yrs.  exp  in  bio-science  research 
using  bio-technology.  M-F,  40/ 
hrs/wk.  Send  resume  to  I.  Sytnikov, 
HR,  Ref  #061002,  InofrMax,  Inc., 
7600  Wisconsin  Avenue,  11th 
Floor,  Bethesda,  MD  20814. 


SOFTWARE  CONSULTANT 

Analyze  &  evaluate  existing 
or  proposed  software  systems. 
Dsgn,  dvlp,  implmnt  and  improve 
programs,  systems  and  related 
procedures  to  process  data  using 
in-depth  knowledge  of  the  soft¬ 
ware  dvlpmnt  life  cycle.  Encode, 
test,  debug  and  install  operating 
programs  and  other  system 
software  utilizing  IBM  operating 
systems,  CICS/COBOL  lan¬ 
guages  and  DB2.  BS  degree  or 
equiv.  In  Comp.  Sci„  Math,  Bus., 
Engnrng  or  Commerce  +  2  yrs  of 
exp.  in  position  offered  or  as  a 
Prog.  Analyst,  Soft.  Engnr  or  Sys. 
Analyst  reqd.  Exp.  must  include: 

a)  Operating  System:  IBM;  and 

b)  Languages:  CICS  and  COBOL; 

c)  Database:  DB2.  High  mobility 
preferred.  40  hrs/wk,  8  am  -  5  pm, 
OT  as  reqd,  $61 ,000/yr.  Qualified 
applicants  please  submit  resume 
to  JS  Supervisor,  Greene  County 
Team  PA  CareerLink,  4  West 
High  Street,  Waynesburg,  PA 
1 5370-1 324.  Refer  to  Job  Order 
No.  WEB249039. 


SYSTEMS  PROJECT  DIREC¬ 
TOR.  BAAN 

Responsible  for  BaaN  ERP  (en¬ 
terprise  wide)  software  projects. 
Plan,  design,  &  direct  BaaN  pro¬ 
jects.  customizing/implementing, 
linking  to  web-based  custom  order 
processing,  inventory  manage¬ 
ment,  distribution  services,  virtual 
&  actual  warehousing.  Oversee 
customizing  BaaN  Finance,  Admin 
&  Distribution  modules.  Provide 
project  management  (develop 
budget,  time  schedule,  evaluate 
projects),  training,  supervise 
consultants  &  contractors.  Re¬ 
quires  MS  in  CS  or  MIS  &  3  yrs 
exp  BaaN  systems  proj.  dvlpmnt; 
or  BS  CS  or  MIS  &  5  yrs  exp 
large  database  design,  dvlpmnt. 
&  implementation  including  3  yrs 
BaaN  systems  project  dvlpmnt; 
exp  to  include  2  yrs  project 
mngmnt  or  leaderfor  enterprise¬ 
wide  BaaN  implementation.  Also 
requires  demonstrated  ability  to 
use  BaaN  Finance,  Admin,  & 
Distribution  modules,  to  imple¬ 
ment  BaaN  on  Windows  NT  & 
MS  SQL  Server,  &  to  link  BaaN 
w/  standard  EDI  translators; 
knowledge  of  BaaN  Advanced 
Tools.  40  hrs/wk,  87-110K/yr. 
Send  2  resumes  to:  Case 
#20018393,  Labor  Exchange 
Office,  19  Staniford  Street,  1st 
Floor,  Boston,  MA  02114 


COMPUTER/IT 

Project  Eng'r,  Networks.  Fram¬ 
ingham,  MA.  Install  &  maintain 
routers  &  switches.  Configure 
routing  protocols  such  as  TCP/ 
IP,  IPX,  AppleTalk,  SNA,  SDLC, 
HDLC,  OSPF,  RIP,  RIP2,  EIGRP 
&  BGP.  Implement  LAN's  & 
WAN's.  Implement  security  in 
ntwrks.  using  Firewalls  &  VPN 
ntwrk.  devices  &  complete  req'd 
documentation  such  as  ntwrk. 
diagrams,  Layer  2  &  Layer  3 
ntwrk  documentation  &  installa¬ 
tion  rpt  documentation.  Provide 
tech,  support  &  troubleshoot. 
REQUIRES:  M.S.  in  Comp.  Sci., 
Elect  Eng'r,  or  related  field  with 
graduate  coursework  in  Comp. 
Ntwrks.  40  hrs/wk  plus  overtime 
as  needed.  Mail  resumes  w/  ad 
(no  calls):  D.  Schofield,  DiData, 
135  Newbury  St.,  Framingham, 
MA  01701. 


Axiom  Systems,  Inc.,  an  enter¬ 
prise  technology  company  cur¬ 
rently  seeks  applicants  for 
the  following  positions  in  its 
Alpharetta,  GA  location:  Senior 
Programmer  Analyst  -  analyze 
requirements,  design,  develop 
and  test  product  lifecycle  man¬ 
agement  and  workflow  customiza- 
tions  of  web-based  applications; 
PDM  Integration  Analyst  -  design, 
develop  and  test  seamless  inte¬ 
gration  of  PDM  and  CAD  systems;. 
PDM  Programmer  Analyst  -  an¬ 
alyze  requirements,  design,  de¬ 
velop  and  test  prodcut  lifecycle 
management  and  worfklow 
scenarios;  Programmer  Analyst 
-  analyze  requirements,  design, 
develop  and  test  Internet-based 
software  systems  and  applica¬ 
tions.  Applicants  for  these  positions 
must  have  a  bachelor's  or  master's 
degree  in  Computer  Science, 
Engineering  or  related  field  plus 
2-5  years  of  relevant  experience. 
For  consideration,  please  forward 
your  resume  along  with  letter 
specifying  position  applying  for, 
to:  Axiom  Systems,  Inc.,  Attention, 
Chuck  Stickels,  2550  Northwinds 
Parkway,  Suite  440,  Alpharetta, 
GA  30004.  EOE 


Sr.  Software  Design  Engr.  wanted 
by  a  software/hardware  dvlp.  Co. 
in  San  Jose,  CA.  Mail  resume  to 
HR,  SANIight,  Inc.  at  50  W.  San 
Fernando  St.,  Ste  420,  San 
Jose,  CA95113. 


Noetix  seeks  Corp  Web  Admin, 
for  HQ  office  in  Bellevue.  WA. 
DESC:  Analyze,  admin,  &  maint. 
perf.  &  content  of  corp.  internet  & 
intranet  sites.  Install  &  config 
web  servers,  netwks,  site  &  sys, 
security  s/w.  Dsgn  &  dev.  web  & 
multimedia  apps.  that  access 
info,  stored  on  var.  RDBMS  util. 
SQL,  ASP,  XML,  VBScript,  JScript. 
&  Macromedia  Flash  on  Win  o/s. 
REQ:  BS  in  Engr,  CS,  Phys,  or 
Math  +  2  yrs.  exp.  admin.  &  maint. 
perf.  &  content  of  corp,  internet  & 
intranet  sites;  install  &  config. 
web  servers,  netwks.  site  &  sys. 
security  apps;  dsgn  &  dev  web 
sites  &  web  apps.  to  access  info, 
on  RDBMS  util.  SQL,  ASP,  VB¬ 
Script,  JScript,  &  Win.  Plus  1  yr. 
exp.  dsgn.  &  dev.  multimedia 
apps.  util.  Macromedia  Flash. 
Prem.  sal.  +  benes.  Pis.  reply  to 
J.  Hubbs,  Job  #NC-105,  2229- 
1 1 2th  Ave  NE,  Ste.  200,  Bellevue, 
WA  98004. 


SALES  MANAGER 

Pelco,  Closed-circuit  TV  Manu¬ 
facturer,  located  in  Clovis,  CA  is 
hiring: 

Strategic  Accounts  Manager 
(Sales  Manager) 

Job  requires  travel  throughout 
the  U.S. 

REQ:  Bachelor's  degree  or  equiv. 
in  Bus.  Admin.,  Marketing  or 
related  field  (in  lieu  of  Bachelor's, 
will  accept  3  yrs  exper  in  job, 
mkting,  or  rel.)  +5  yrs  exper  in 
CCTV  &  video  equip  industry, 
incl.  3  yrs  marketing  exper  w/ 
customer  strategies.  Resumes 
to:  Pelco,  HR,  Attn:  Kathy  Tucker, 
3500  Pelco  Way,  Clovis,  CA 
9361 2  or  email  to  HR@oelco.com. 
Affirmative  Action/EOE, 


Software  Developers,  Gaithers¬ 
burg,  MD.  Analyze,  design, 
develop,  integrate,  test,  implement 
&  maintain  business  applications 
in  internet  architecture  using 
Lotus  Domino,  DB2,  DECS, 
XML,  Java,  Javascript,  DHTML, 
AS400,  and  MQSeries.  Train 
clients  in  the  use  &  operation  of 
new  applications.  B.S.  in  C.S., 
Math  or  related  &  5  yrs  rel.  exp. 
including  3  yrs  exp.  with  DB2 
or  RDBMS.  Experience  with  Lotus 
Notes/Domino,  Java,  and  Cus¬ 
tomer  Relationship  Management/ 
Sales  Information  System.  40 
hrs/wk.  Resume  to  B.  Smith, 
HR  #18.  Softelcomm,  lnc.849-C 
Quince  Orchard  Blvd,  Gaithers¬ 
burg,  MD  20878. 


Software  Engineer/Developer 
needed  to  assist  in  building 
an  SAP  EH&S  R/3  system. 
Requires  Masters  Degree  in 
Engineering  or  related  field  and 
2  years  experience  in  software 
development  which  may  precede 
Masters  Degree.  Resumes  to: 
Human  Resources,  Enterprism 
Solutions,  1  Little  Falls  Centre, 
Ste.  110,  Centerville  Rd., 
Wilmington,  DE  19808.  Refer 
to  job  code:  BDBC 


♦ 


Systems  Analyst  wanted  by  FL 
based  Co.  Must  have  Master's 
degree  in  Comp.  Sc.  or  Engg., 
2  yrs.  of  exp.  in  Comp.  S/W 
dev.  and/or  cons.  Must  have 
proficiency  in  RDBMS,  VB,  VS, 
Weblogic.  XML.  Respond  to: 
GSNP  Corporation  d/b/a 
Howard  Johnson,  3314  S.  Dale 
Mabry  Hwy.,  Tampa,  FL  33629. 
(Ref.  GG  8205).  No  phone  calls. 


Project  Mgmt  Analyst  (Brunswick. 
New  Jersey):  Manage,  coordinate 
&  analyze  activities  re  info.  Tech. 
&  internet-based  projects.  De¬ 
termine  project  costs,  require¬ 
ments.  etc.  Requires:  2  yrs.  exp. 
in  job  offered  or  2  years  exp. 
as  a  mgmt  execut.  or  a  related 
position  with  same  duties  and 
■Bachelors  in  Business  Admin 
or  a  related  field.  'Will  accept 
bachelor  s  in  a  combination  of 
college  level  education  and 
experience.  Exp.  ref.  required. 
Salary:  $68,000/yr.  EOE.  Send 
resume  to:  Vertex  Soft,  Inc  .  622 
Georges  Road,  Ste  104  N. 
Brunswick,  NJ  08902. 


Baan  Tools  Specialist 

You  will  be  responsible  for 
requirements  analysis  &  Baan 
ERP  implementation  to  support 
sales,  marketing  &  manufacturing. 
Ideal  candidate  will  have  Bache¬ 
lor's  degree  in  C.S.  or  related 
field  with  at  least  three  years 
experience  in  Baan  ERP  systems 
implementation  in  UNIX  &  NT 
environment.  Send  resume  to 
HR  Manager,  Stonhard,  Inc., 
P.O.  Box  308,  Maple  Shade,  NJ 
08052,  FAX:  (856)  321.7525, 
www.stonhard.com,  EOE, 
M/F/H/V.  No  phone  inquiries. 


Programmer-Analyst  for  specialty 
wire  and  cable  manufacturer  in 
Fort  Mill,  South  Carolina.  Minimum 
two  years  experience  developing, 
designing,  coding,  analyzing  and 
implementing  commercial  system 
applications  using  JAVA,  XML, 
and  DHTML,  performing  debug¬ 
ging  and  unit  testing  on  applica¬ 
tions  to  eliminate  errors  and 
ensuring  quality  operations. 
Requires  Bachelor  of  Science 
degree  in  Computer  Science. 
Send  resume  to  Recruiter-PA, 
Belden  Wire  &  Cable  Company, 
793  Fort  Mill  Highway,  Fort  Mill, 
SC  29715. 
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Sr.  Systems  Analyst  wanted  by 

NJ  based  Co  for  job  loc  through¬ 
out  the  US.  Must  have  Bachelor's 

degree  in  Comp.  Sc.  or  Engg..  2 

yrs.  of  s/ware  exp.  &  proficiency 

with  Linux,  Telecom  &  network 

security  protocols,  Firewalls, 

VPN,  SMS.  Respond  to:  Atinav, 

Inc.,  100  Franklin  Sq.  Dr.,  Ste. 

#304,  Somerset,  NJ  08873.  (Ref. 

GG  8244).  No  phone  calls. 

Systems  Administrator  wanted 
by  Home  Care  agency  in  Elk 
Grove  Village,  IL.  Reqd:  Bachelors 
in  Computer  Science  or  Elec¬ 
tronics  or  Communications 
Engineering.  Send  resumes 
to:  HR,  Caring  Home  Care 
Services,  Inc.,  1881  Commerce 
Drive,  Unit  107,  Elk  Grove 
Village,  IL  60007.  No  calls 
please. 

Programmer  wanted  by  Financial 

Software  &  Systs  Dvlpr  in  MA. 

Dvlp  &  maintain  testing  proce¬ 
dures;  doc  on-line  ref  materials; 

provide  in-house  customer  sup¬ 
port;  write  functional  specs  for 

programming;  dvlp  new  systs. 

BS  in  Comp  Sci  &  2yrs  exp  in  job 

offered  req.  Respond  to:  Office 

Mngr/SunGard,  2  Adams  PI,  4th 

FI,  Quincy,  MA  02169. 

PROGRAMMER/ANALYSTS 
wanted  by  hardware/software 
co.  in  Houston.  Must  have 
degree  &  exp.  Respond  by 
resume  only  to:  Mr.  S.  Ryu,  J/H 
#10,  Computize,  Inc.,  1008  Wirt 
Rd„  Ste  #150,  Houston,  TX 
77055. 

Programmer-Analyst/DBA  to 
design,  analyze,  develop,  code, 
test,  optimize,  implement,  & 
provide  user  support  for  various 
applications  using  VBScript, 
JSP,  Java  and  HTML.  Design  & 
create  Oracle  8  tables,  triggers, 
databaselinks,  constraints,  in¬ 
dexes,  and  PL/SQL  stored 
procedures  and  packages.  Work 
with  Windows  NT,  Unix,  Oracle 
Discoverer  &  MS  Access  2000. 
Reqd:  B.S.C.S.  &  5  yrs  Exp.  M-F, 
40  hrs/wk.  Freq.  reloc.  within  the 
US  may  be  necessary.  Resume 
to  J.  Brigham,  HR  #061002,  , 
6992  Columbia  Gateway  Dr., 
Columbia,  MD  21046. 

Program'rs/Analysts:  Analyze, 
plan,  devlp  &  test  sw  applic'ns 
for  cable  communica'n  industry; 
Evaluate  user  request  to  program 
&  modify  applica'n  W/VC++, 

JDK1.2,  Corba,  AnsiC++  on 

PowerTV/NT  Platform.  40h/w, 
8-5,  BS  or  foreign  equival't  & 

1  -yr  wk  exp  in  any  position 
involv'g  JDK1.2  &  PowerTV. 

Resume  to  J.  Bhasin,  Itaas,  Inc. 
4530  S.  Berkeley  Lk  Rd.  #A, 
Norcross,  GA  30071/email: 
jaspal.bhasin  @  itaas.com 

Systems  Analyst  wanted  by  NJ 

based  Co  for  job  loc  throughout 

the  US.  Must  have  Master's 

degree  in  Comp.  Sc.  or  Engg.,  2 

yrs  of  s/ware  exp.  &  proficiency 

with  Bluetooth,  UPnP,  JDBC, 

JAVA  &  Visual  Basic.  Respond 

to:  Atinav,  Inc.,  100  Franklin  Sq. 

Dr.,  Ste  #  304,  Somerset,  NJ 

08873.  (Ref.  GG  8208).  No 

phone  calls. 

Software  Engineer  wanted  w/BS 
&  2  yrs.  exp.  in  San  Jose,  CA. 
Send  resume  to:  HR  Dept.,  Scicom 
Americas,  Inc.,  1500  S.  Dairy 
Ashford,  Ste  241,  Houston,  TX 
77077 

Systems  Analyst/Programmer 
wanted  by  Software  Dvlpmt  firm 
in  Bklyn  to  dvlp  &  upgrade 
s/ware  apples.  Bach  degree 
req'd.  Respond  to:  A-Plus 
Systems,  Inc.,  6604  Bay  Parkway, 
Brooklyn,  NY  11204. 

Several  computer  related  posi¬ 
tions  available  for  large  trans¬ 
portation  and  logistics  services 

company.  Degree,  technical  skills 

&  experience  vary  per  positions. 

Send  resume  to:  vivianirizarrv 

@  UDS.com  or  United  Parcel 

Service,  P.O.  Box  833,  Mahwah, 

NJ  07430,  Attn:  Vivian  Irizarry, 

A-563,  Ref.  #1.  Employer  will  not 

sponsor  visas  for  position. 

where  the  best  get  better 


1-800-762-2977 


A  high-tech  company  is  seeking 
the  fllwing  Software  Engineers 
who  will  collaborate  in  the 
research,  design  &  development 
of  next-generation  storage  net¬ 
work  systems.  Req’d: 

Software  Engineer  #1:  Master's 
in  CompSci.  Min  1  yr  exp  as 
Software  Engineer/Researcher. 
Must  have  research  and/or  project 
exp  w/Active  Networks  &  network 
programming.  REF#20065-1 
Software  Engineer  #2:  Master's 
in  CompSci.  Min  lyr  exp  as 
Software  Engineer/Researcher. 
Must  have  research  and/or 
project  exp  w/design  &  develop¬ 
ment  of  IP  protocol  stacks. 
REF#20065-2  Software  Engineer 
#3:  Master's  in  CompSci.  Min  1 
yr  exp  as  Software  Engineer/ 
Researcher.  Must  have  research 
and/or  project  exp  w/network 
security  &  access  control  in  IS. 
REF#20065-3 

Send  res.  to:  Anne  Budowsky, 
Nextorage,  Inc.,  520  8th  Ave., 
21st  FI.,  NY,  NY  10018.  PLS 
INDICATE  REF#. 


SOFTWARE  CONSULTANT 

Analyze  &  evaluate  existing  or 
proposed  software  systems. 
Dsgn,  dvlp,  impimnt  and  improve 
programs,  systems  and  related 
procedures  to  process  data  using 
in-depth  knowledge  of  the  soft¬ 
ware  dvlpmnt  life  cycle.  Encode, 
test,  debug  and  install  operating 
programs  and  other  system 
software  utilizing  knowledge  of 
RDBMS  environments  and 
PowerBuilder.  B.S.  degree  or 
equiv.  in  Comp.  Sci.,  Comp.  Sys., 
Math,  Engnrng,  Bus.  or  Com¬ 
merce  +  2  yrs  of  exp.  in  position 
offered  or  as  a  Prog.  Analyst, 
Sys.  Analyst  or  Soft.  Engnr  reqd. 
Exp.  must  incl:  a)  Oracle,  Sybase 
or  SQL  Server;  and  b)  Power¬ 
Builder.  High  mobility  preferred. 
40  hrs/wk,  8  am  -  5  pm,  OT 
as  reqd,  $61,000/yr.  Qualified 
applicants  please  submit  resume 
to  Manager,  Washington  County 
Team  PA  CareerLink,  Millcraft 
Center,  Suite  150LL,  90  West 
Chestnut  Street,  Washington,  PA 
15301-4517.  Refer  to  Job  Order 
No.  WEB249035. 


Business  &  Information  Systems 
Administrator.  Administer  and 
manage  company  information 
structure.  Perform  all  IS  related 
functions.  Support,  maintain, 
and  enhance  current  JD  Edwards 
ERP  system  to  achieve  business 
strategies  and  objectives.  Create, 
maintain,  and  distribute  business 
reports  from  ERP  system.  Design 
and  maintain  company  custom 
software.  Oversee  and  perform 
all  IT  related  functions.  Position 
is  located  in  York,  Nebraska.  B.S. 
degree  req'd  (or  equiv.  education 
or  experience)  w/  major  in 
Comp.  Sci.  or  related  field.  5  yrs 
of  experience  req'd.  Must  have 
proof  of  legal  authority  to  work  in 
the  United  States.  Send  resume 
to  Joe  Kardos,  15159  Andrew 
Jackson  Hwy  76  West,  Fair  Bluff, 
NC,  28439.  This  advertisement 
is  paid  for  by  the  employer. 


Authorware  Dev/Senior:  Work 
w/pioneer  in  field  of  applying 
computer  technology  to  work¬ 
force  training  in  North  Jersey, 
standard  benefits  +  tuition 
reimb.,  no  pd.  relocation.  Code 
Macromedia  Authorware  (v  3.5+) 
proj.,  convert  &  add  changes  for 
existing  proj.  to  highest  version 
of  s'ware.  Prgm.  extensions  to 
incl.  missing  functions,  use  MS 
Visual  C/C++  Developer  Studio 
on  Windows  interface  to  prgm. 
critical  functionality  unavailable 
in  Authorware,  compile/draft/ 
maint.  s'ware  doc.  Must  demon¬ 
strate  working  knowledge  w/Au- 
thorware  dev.  environ.  &  pgrmmg. 
Principals  only  reply  to  Dept.  DP, 
IS1  Inc.,  411  Hackensack  Ave., 
Cont.  Plz  II,  Hackensack,  NJ 
07601. 


Advantecs  has  openings  for 
application  developers  for  mam- 
frame  and  Database  admin.str? 
tors  for  Oracie/DB2  for  its  various 
locations  in  US.  Must  have  at 
least  5  years  experience  in  the 
following  areas: 

Mainframe  Application  Developers: 
Exp  in  onlin&'batch  programming 
using  C080L,  JCL,  CICS,  DB2 
&  VSAM.  Must  have  problem 
solving  exp  in  using  mainframe 
debugging  tools.  Exp  in  pro¬ 
gramming  client  server  applica¬ 
tions  with  mainframe  as  server  a 
big  plus. 

Oracle  /  DB2  DBAs:  Exp  in  set¬ 
tling  up  and  supporting  produc¬ 
tion  in  Oracle/DB2  environment. 

All  the  positions  require  good 
analysis,  problem  solving  and 
communication  skills.  Some 
positions  also  require  Bachelor’s 
degree.  Others  require  Master’s 
degree,  equivalent  degree  and 
experience  s  also  accepted. 
Excellent  pay  and  benefits. 
Please  indicate  the  position 
applied  for.  Mail  resume  to  HR 
Dept,  Advantecs  Group  Inc, 
1430  Oak  Tree  Road,  Suite  F, 
Iselin,  NJ  08830. 


Computer  Professionals  (Multiple 
Positions)  w/exp  in: 

Cobol,  DB2,  CICS,  IMS,  MVS, 
JCL,  ERWin,  Delphi,  NFS,  NIS, 
DHCP,  HACMP,  Raid  Arrays, 
Pro'C,  C,  C++,  VC++,  HTML, 
Perl.  Veritas  Volume  Manager, 
Bourne,  K  Shell,  Java,  Java 
Script,  ASP,  Corba,  EJB,  JSP, 
Swing,  AWT,  Weblogic,  Web¬ 
sphere,  Servlets,  COM/DCOM, 
IIS,  EDI,  .Net,  Active 
X,  AIX,  WinRunner,  Peopiesoft, 
Peoplecode,  Veritas,  Sun  Cluster, 
NetBackup,  HP  Open  View 
backup, Linux,  Unix,  HP-UX,  AIX, 
DOS,  Windows  NT,  VAX/  VMS, 
VB,  PB,  Sybase,  PL/SQL,  T- 
SQL,  ODBC,  JDBC,  MS  SQL 
Server,  SQL’Plus.  SQL'Loader, 
Oracle,  Datawarehouse,  Forms, 
Reports,  Oracle  DBA,  Oracle 
RDBMS,  Dynix/Ptx,  Oracle  Apps 
(GL,  AP,  AR,  OE,  BOM,  PO,  HR, 
INV)Oracle  Financial  Applic., 
Oracle  Designer,  MS  Access, 
Excel,  Cisco  Router,  Windows 
NT,  DOS,  Sun  Solaris  Cluster, 
Sequent  Server,  Aries  Servers, 
Sun  Solaris  system  &  Network 
Admn.,  SUN,  SUP  Servers,  ACL, 
TCB,  Developer  2000,  Designer 
2000,  Rational  Rose,  Numega 
bounds  Checker,  True  Coverage, 
True  time,  OOAD,  MFC  library, 
SEI-CMM,  ERWin  and  related 
tools.  Apply  to:  STG,  Inc.,  3340 
Peachtree  Road,  Suite  #1800, 
Atlanta,  GA  30326. E-mail: 
itresumes@stoil.com 


Applications  Developer  (Norcross 
GA)-  Research/design/analyze/ 
develop  software,  write  instructions 
using  C/VB/JavaScript/Win 
Runner/PL/SQL/Apache/HTML/ 
MS  Visual  Studio/source  control 
tools/Object-oriented  program. 
&  tech.  &  MS  SQL.  Bachelor's 
degree  or  foreign  equiv.  in  CS, 
MIS,  CIS,  Engineering,  or  related 
req'd.  Must  be  proficient  in 
C/VB/JavaScript/WinRunner/PL/ 
SQL  /Apache/HTML/  MS  Visual 
Studio/source  control  tools/ 
Object-oriented  program.  &  tech. 
/MS  SQL.  $57,750/yr,  40+  hrs/ 
wk,  OT  as  need.  Send  resume 
to:  M.  Powers,  HR  Adm., 
REF#SN,  CoreCARD.I  Meca 
Way,  Norcross,  GA  30093. 


ERG  is  looking  for  Dir  of  Devel¬ 
opment/Info  Systems  to  estab 
&  run  technical  teams  for  MS 
Great  Plains  (MSGP)  Value 
Added  applic.  Must  know  basic 
acctng  principles  &  tech,  needs 
of  acctng  firms.  Customize  solu¬ 
tions  using  MSGP  Dexterity.  Assist 
project  mgrs  in  systm  dsgn,  incl 
General  Ledger.  Receivables  & 
Payables.  Recruit  staff  &  run 
wkly  meetings.  Manage  tech.  & 
prof  dev.  BS  in  Comp  Info  Sys 
or  related  field.  Min  5yr  exp. 
Certified  MSGP  Dexterity  Engi¬ 
neer  or  proven  exp  w/Dexterity. 
Salary  based  on  exp.  Resume  to 
ERG,  3430  American  River  Dr,, 
Ste  200,  Sacramento,  CA  95864 
or  email  ckaeser @ enterprise 
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Panasonic  Washington  Mutu 
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Check  out  our 
WITI  FastTrack 
Supplement  today 


If  organizations  want  to  flourish  in 
the  global  economy,  leaders  need  to 
nourish  their  employees.  Our  Women 
in  Technology  International  (WITI) 
FastTrack  coverage  will  cover  the 
trends  and  techniques  of  leading 
companies  around  the  United  States. 
If  you're  interested  in  a  top  IT  envi¬ 
ronment  offering  first-class  treatment, 
check  out  WITI  FastTrack.  The  list 
below  offers  just  a  sample  of  the 
exceptional  employers  featured  in 
this  supplement. 

•  American  Express 

•  Capital  One 

•  FBI 

•  Microsoft 

•  Raytheon 

•  Sprint 

•  Wal-Mart 

•  Xerox  Corporation 


For  more  information  on  WITI  FastTrack, 
please  call  Janis  Crowley  at 
1-800-762-2977  ext.  7607,  or  email  at 
janis  crowley@itcareers.net. 
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Survival  is  key  message 
at  SuperComm  show 

Event  is  more  about  reemergence  from  downturn. 


■  BY  TIM  GREENE  AND  JIM  DUFFY 

ATLANTA  —  Despite  the  best  efforts  of 
vendors  to  hawk  their  wares,  attendees  at 
last  week’s  SuperComm  were  more  con¬ 
cerned  with  lifelines  than  product  lines. 

The  buzz  at  the  show,  which  is  largely 
geared  toward  service  providers,  had 
more  to  do  with  surviving  the  current 
downturn  than  it  did  with  the  next  big 
technology  or  innovation.  There  were 
plenty  of  product  announcements,  but 
virtually  all  were  of  marginal  importance 
as  vendors  chose  not  to  cause  a  stir  in  an 
environment  where  customers  are  not 
spending  and  companies  are  shedding 
hundreds  of  thousands  of  employees. 

The  slump  in  attendance  at 
SuperComm  reflected  the  slump  in  the 
industry  Attendance  was  off  30%  from 
last  year,  from  52,822  to  just  less  than 
37,000.  Exhibit  space  was  down  by 
37,490  square  feet,  although  show  offi¬ 
cials  said  there  were  only  28  fewer 
exhibitors  than  last  year. 

Edge  router  start-up  Allegro  Networks 
did  not  exhibit  at  SuperComm,  but  host¬ 
ed  a  wake  for  the  telecom  industry  that 


ed  some  merriment  with  a  keynote  that 
featured  much  good-natured  ribbing 
with  a  Cisco  employee  demonstrating 
Internet  applications  that  could  raise 
the  profile  of  service  providers  with 
their  customers,  and  Cisco’s  fortunes  in 
the  service  provider  market. 

Cisco  got  down  to  business,  rolling  out 
10G  bit/sec  Ethernet  and  Dynamic 
Packet  Transport  interfaces  for  its  12000 
series  Internet  routers.  Cisco  claims  to  be 
the  first  to  market  with  a  routed  10G 
bit/sec  Ethernet  interface. 

Other  announcements  at  the  show 
included: 

•  Lucent’s  high-density  APX  8100  uni¬ 
versal  gateway,  which  is  designed  to  let 
service  providers  deliver  dial-up  IP 
remote  access  and  voice-over-IP  services 
for  their  business  and  residential  cus¬ 
tomers; 

•  Nortel’s  addition  of  software  to  its 
Shasta  5000  Broadband  Services  Node 
that  lets  the  box  terminate  IP-Security 
VPN  tunnels  from  the  same  VPN  clients 
that  are  used  with  Nortel’s  Contivity  gate¬ 
ways,  and  supports  network-based  virus 
scanning  and  intrusion  detection; 


A 

Cisco's  chief  surveys 
carrier  market 

The  percentage  of  Cisco ’s  revenue  from  service 
providers  has  been  halved  during  the  current 
downturn ,  from  just  over  40%  in  1999-2000,  to 
the  mid-  to  low-20%  range  now.  Yet  a  market 
research  firm  just  disclosed  that  Cisco  sells  more 
telecom  gear  than  any  other  company,  including 
the  traditional  suppliers.  But  Cisco  still  has  room  for  improvement, 
as  CEO  John  Chambers  discussed  in  an  exclusive  SuperComm 
interview  with  Network  World  The  Edge  Managing  Editor  Jim  Duffy. 

What's  your  assessment  of  the  state  of  Cisco's  service  provider  business? 

If  we  were  to  have  said  three  years  ago  that  we  were  [going  to  be]  the  No.  1 
telecommunications  player  in  the  world  (according  to  Synergy  Research), 
and  that  we  would  have  enjoyed  the  industry’s  best  cash,  profits  and  market 
cap,  no  one  would  have  believed  us.  And  yet  that’s  what  we’ve  been  able  to 
do  over  the  past  three  years.  At  the  same  time,  this  downturn  has  been  hum¬ 
bling  to  us  all,  and  that’s  when  you  do  the  soul  searching  and  say  what  do 
you  need  to  do  better.  So  where  we’ve  done  well  is  when  we’ve  been  cus¬ 
tomer-driven.  Where  I’ve  gotten  in  trouble  is  where  we’ve  made  the  mistake 
in  thinking  we  knew  more  than  the  customer  did. That  was  true  in  [our  deal¬ 
ings  with]  the  [incumbent  local  exchange  carriers]  and  the  [post,  telegraph 
and  telephone  administration], We  spent  the  last  year  and  a  half  recovering 
from  that. The  one  company  that  may  come  out  of  the  downturn  in  a  dra¬ 
matically  different  position  is  Cisco. 
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fcfclt  seems  the  industry  needs  a  little  levity 
and  some  new  applications  to  get  it  out  of 
its  doldrums.  9  9 

Craig  Barrett 

CEO,  Intel 


featured  a  tombstone  engraved  with  the 
names  of  defunct  companies  and  a  cof¬ 
fin  filled  with  beer. 

“It’s  like  we're  in  a  lifeboat,  there’s  no 
food,  there’s  no  water  and  everybody’s 
waiting  to  see  who’ll  still  be  alive  when 
the  supply  ship  comes,”  said  Daniel 
Briere.CEO  of  TeleChoice  and  a  Network 
World  columnist. 

Some  followed  Allegro’s  lead  and  tried 
to  find  the  lighter  side  of  the  landscape. 
Intel’s  CEO  Craig  Barrett  used  a  video  of 
himself  in  a  black  suit  and  dark  glasses 
as  the  introduction  to  his  keynote 
address. The  video  seemed  to  trace  him 
traveling  via  the  Internet  from  Intel’s 
California  headquarters  to  SuperComm. 

“It  seems  the  industry  needs  a  little  lev¬ 
ity  and  some  new  applications  to  get  it 
out  of  its  doldrums,"  Barrett  said  after 
materializing  onstage. 

Cisco  CEO  John  Chambers  also  inject- 


So  is  the  downturn  directly  related  to  your  success  in  the  service  provider  business? 

The  downturn  gave  us  a  chance  to  change  [and  do]  what  we  needed  to 
do  better  in  the  service  provider  market.  Where  we  weren’t  close  enough  to 
the  operational  people  at  a  BellSouth  or  Verizon  or  SBC,  we’ve  rebuilt  those 
relationships.  In  fact,  we  never  really  had  them. You’ve  got  to  earn  the  trust  of 
the  operational  people  and  be  driven  by  the  operational  side. 

So  that's  the  mistake  you  alluded  to  in  your  SuperComm  keynote  address? 

Yes.  it  started  off  that  way  we  got  too  far  away  from  it,  paid  a  terrible  price 
for  it,  and  now  we’re  back.This  market  is  coming  to  the  service  providers  if 
they  execute  properly  Even  in  the  hot  growth  areas,  many  of  the  enterprise 
customers  would  like  to  outsource.  But  they  don’t  want  just  transport.  What 
they  really  want  is  to  get  value  on  top  of  that.  How  this  evolves  depends  on 
how  quickly  service  providers  transform  themselves  but  also,  using  Cisco  as 
an  example,  with  our  clear  leadership  position  in  the  enterprise,  how  effec¬ 
tively  we  work  with  service  providers  and  learn  from  each  other. 

In  addition  to  being  customer-driven,  particularly  with  the  ILECs  and  regional  Bell 
operating  companies,  what  else  do  you  need  to  do  to  partner  with  them? 

We  have  the  potential  to  be  a  true  business  partner;  the  CEOs  [at  the  carri¬ 
ers]  get  that. They  realize  that  what  we  bring  to  the  relationship  is  much 
more  than  being  a  supplier.  Within  the  supplier  ranks,  it’s  do  you  provide  one 
or  two  pinpoint  products,  or  do  you  provide  an  architecture  that  protects 
their  investment?  That’s  what  the  opportunity  is  in  front  of  us.The  real  ques¬ 
tion  is,  can  we  be  as  effective  with  the  service  providers  as  we  were  in  the 
enterprise?  In  the  enterprise,  our  market  share  is  above  60%;  in  the  service 
provider  market,  we’re  in  the  single  digits.  So  the  opportunity  is  there  if  we 
execute  right. 

How  are  they  accepting  that  proposition? 

1  have  to  be  very  careful  how  I  say  it.  With  proper  balance  and  humility,  1 
have  to  say  this  is  our  joint  opportunity  I  think  most  of  them  would  agree. 

Are  you  getting  positive  feedback  from  the  ILECs  and  RBOCs? 

See  Chambers,  page  53 


•  Sycamore  Networks’  enhancement  to 
its  SN  3000  grooming  switch,  which  con¬ 
serves  bandwidth  by  packing  data  onto 
the  ring  in  50M  bit/sec  increments. 
Without  this  capability,  traffic  may  not  fill 
up  155M  bit/sec  and  622M  bit/sec  pipes 
and  bandwidth  would  be  wasted. 

•  Extensions  to  Tellabs’  5500  and  6500 
cross-connects  that  let  service  providers 
eliminate  the  need  for  stand-alone 
add/drop  multiplexers  at  the  hub  and 
end-office  locations,  and  increase  net¬ 
work  density  for  operating  cost  and  floor- 
space  reductions  of  50%  and  80%, 
respectively.  Tellabs  5500  digital  cross- 
connect  systems  currently  handle  75%  of 
all  network  traffic  in  the  U.S. 

A  group  of  vendors  also  used  the  show 
to  launch  an  initiative  called  the  Service 
Creation  Community.  The  group  in¬ 
cludes  Microsoft,  Siemens  and  ADC 
Telecom.  ■ 
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VoIP 

continued  from  page  1 

ICS  7750-DV  with  eight  digital 
PSTN  trunks,  and  eight  digital  fax 
and  conferencing  device  lines. 
The  packages  are  available  for 
$12,000  and  $19,000,  respectively 

The  ICS  7750  package  installed 
at  Quay,  a  high-tech  components 
manufacturer  in  Eatontown,N.J., 
recently  replaced  an  aging  Lu¬ 
cent  small-office  PBX  that  was 
becoming  too  cumbersome  to 
manage. 

“The  cost  for  doing  moves, 
adds  and  changes  is  much  lower 
compared  with  our  legacy  PBX,” 
Roessler  says. 

For  deploying  new  desktops, 
Roessler  says  the  converged  net¬ 
work  also  reduces  the  cost  of 
running  cable  in  half  because 
only  one  line  for  Ethernet  needs 
to  be  run  instead  of  separate 
voice  and  data  wires.  While  sav¬ 
ings  are  difficult  to  quantify, 
Roessler  estimates  he  lowered 
the  overall  maintenance  costs 
for  maintaining  the  company’s 
voice  system  by  18%  with  the 
Cisco  ICS  7750. 

Going  against  Ciscos  forays 
into  the  market  for  small  and 
midsize  VoIP  customers,  3Com  is 
announcing  this  week  a  software 
upgrade  for  its  SuperStack  3  NBX 
device  that  increases  IP  handset 
support  to  1,500  IP  phones  — 
twice  as  many  as  the  previous 
version.  3Com  says  a  memory 
upgrade  on  the  NBX  in  addition 
to  the  software  upgrade  could 
be  required  to  support  1,500 
devices  —  3Com  recommends 
515M  bytes  of  RAM  on  the  box. 
Release  4.1  of  the  NBX  software, 
which  will  be  a  free  upgrade  to 
3Com  NBX  customers,  also  will 
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include  Web  browser  access  to 
the  NBX’s  unified  messaging 
voice/e-mail  server,  allowing  us¬ 
ers  to  access  voice  mail  and  e- 
mail  through  a  Web  browser. 

As  3Com  and  Cisco  appear  to 
be  straying  from  their  VoIP  bread- 
and-butter  IP  telephony  bases, 
some  analysts  say  the  use  of  VoIP 
by  smaller  companies  has  the 
best  payoff. 

VoIP  fear  factors 

A  survey  of  500  Network 
World  readers  found  these 
top  concerns  about  IP 
telephony: 

1.  Quality-of-service  assurances 

2.  Immature  standards. 

3.  Cost  of  equipment  and 
installation. 

4.  Increased  risk  of  downtime. 

SOURCE:  NETWORK  WORLD  500  SURVEY 

“Small  and  medium  businesses 
[are]  the  bulk  of  the  marketplace. 
A  significant  amount  of  imple¬ 
mentations  [of  Cisco  VoIP  gear] 
are  small  sites  already”  says 
Elizabeth  Ussher,  vice  president 
for  convergence  at  market  re¬ 
search  firm  Meta  Group.  Ussher 
says  Cisco’s  value-added  reseller 
(VAR)  network  will  help  it  in  the 
smaller  VoIP  markets.  “The  num¬ 
ber  of  Cisco  VARs  [that  serve 
midsize]  customers  is  huge  ...  a 
smart  move.” 

Sales  of  IP  PBXs  and  phones 
reached  $1  billion  last  year,  while 
the  average  VoIP  deployment 
was  around  70  seats  per  system, 
according  to  Cahners 
Instat/MDR  —  numbers  which 
bode  well  for  Cisco’s  push  into 
the  small-  and  midsize-business 
market. 
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A  report  on  the  new  Cisco 
small-business  convergence  offer¬ 
ings  from  Current  Analysis 
e-business  infrastructure  analyst 
Brian  Riggs  also  praises  the  ven¬ 
dor’s  move  into  small  and  mid¬ 
size  companies. 

With  the  new  products,  “Cisco 
is  able  to  compete  in  a  [small 
and  midsize  enterprise]  packet 
telephony  market  that  has,  for  all 
intents  and  purposes,  been 
closed  to  it,”  Riggs  says.  However, 
he  says,  while  Cisco  will  tap  a 
market  in  which  a  majority  of  IP 
telephony  purchases  are  made, 
the  pricing  for  the  MCS  7815-100 
and  ICS  7750  bundles  —  around 
$600  to  $800  per  user  —  could 
scare  away  some  smaller  cus¬ 
tomers  with  tight  budgets. 

As  for  3Com  scaling  up  its  IP 
PBX  support,  Meta  Group’s 
Ussher  says  the  challenge  to 
move  up  the  ladder  to  large- 
enterprise  customers  will  be  sig¬ 
nificant,  partly  because  of  the 
company’s  past  strategic  mis¬ 
steps.  “That’s  going  to  be  a  tough 
one  for  them  on  the  voice  side,” 
Ussher  says  of  3Com,  as  some 
large  corporations  still  remem¬ 
ber  the  vendor’s  exit  out  of  the 
business  of  selling  high-end  net¬ 
work  gear  several  years  ago.  “It 
will  be  hard  [for  3Com]  to  go 
back  to  those  large  enterprise 
customers  and  say  ‘Hey,  we’re 
back  and  we  have  a  high-end 
voice  solution  for  you.’” 

Meanwhile,  at  SuperComm  in 
Atlanta  last  week,  smaller-office 
IP  PBXs  based  on  the  emerging 
SIP  standard  were  on  display 
from  two  vendors  with  disparate 
telephony  backgrounds.  SIP  per¬ 
forms  basic  call-control  tasks 
such  as  session  setup  and  tear- 
down,  and  controls  other  signal¬ 
ing  for  features  such  as  hold, 
caller  ID  and  call  transferring. 

Mitel  —  a  maker  of  traditional 
circuit-switched  PBXs  —  and 
Pingtel  —  which  sells  SIP-based 
IP  phones  —  each  announced 
converged  telephony  boxes  for 
sites  with  10  to  500  seats.  Mitel  al¬ 
ready  sells  H.323-based  IP  PBXs. 

Pingtel’s  SIPxchange  IP  PBX  is 
based  on  the  SIP  VoIP  protocol 
—  rather  than  the  H.323  proto¬ 
col,  as  implemented  by  3Com 
and  partly  by  Cisco.  The  com¬ 
pany’s  first  entry  into  the  switch¬ 
ing  arena,  SIPxchange  can  pro¬ 
vide  call  control,  voice  mail, 
interactive  voice  response  and  a 
browser-based  system  manage¬ 
ment.  The  box  also  supports 
applications  using  XML,  Java 
and  voiceXML. 

The  SIP  stack  running  on 
SIPxchange  lets  the  box  support 
Pingtel  Expressa  SIP  phones,  or 


other  SIP-based  phones  from 
companies  such  as  Cisco  and  Sie¬ 
mens.  Windows  XP  clients  using 
the  SIP-based  Windows  Mess¬ 
enger  application  also  could  at¬ 
tach  as  a  client  to  the  SIPxchange 
server.  SIPxchange  is  slated  to  be 
available  in  the  fall  for  around 
$600  per  seat. 

Mitel  showed  a  SIP-based  of¬ 
fice  device  that  acts  like  an  IP 
telephone  key  system,  file  and 
application  server,  print  server 
and  firewall. The  3050  Integrated 
Communications  Platform  fea¬ 
tures  two  Ethernet  ports,  one  to 
attach  to  a  LAN  switch  and  one 
to  attach  to  a  WAN  access  device 
such  as  a  DSL  box  or  cable 
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modem.  The  3050  is  scheduled 
to  be  available  in  the  fall  for 
$1,900,  and  the  5055  SIP  phone 
will  be  available  later  this  month 
for  $350. 

“SIP  really  is  a  better  standard 
for  enterprise  VoIP,"  says  Brian 
Strachman,  an  analyst  with  Cah¬ 
ners  Instat/MDR.  “The  rest  of  the 
industry  uses  H.323  for  the  most 
part,  but  it  is  not  as  well-refined  a 
standard  as  SIP.” 

Senior  Editor  Tim  Greene  con¬ 
tributed  to  this  report. 

Get  more  information  online. 
DocFinder:  9756 
www.nwfusion.com 


Chambers 

l!  continued  from  page  52 

We’re  in  the  best  shape  we’ve  ever  been  in  with  the  ILECs, 
RBOCs  and  PTTs.  Not  to  say  we  can’t  do  better. 

Where  is  Cisco  particularly  challenged  in  the  service  provider 
arena? 

It’s  not  as  much  in  our  product  capability  It’s  with  the  opera¬ 
tional  people  in  the  accounts. We  have  not  built  the  relation¬ 
ships  there  and  [weren’t]  being  customer-driven  by  them. That’s 
where  we  had  the  biggest  hurdles.Those  are  the  decision  mak¬ 
ers  for  the  equipment. 

Cisco  seems  to  be  virtually  invisible  in  circuit-to-packet  migration. 
That  business  seems  to  be  going  to  the  Nortels  and  the  Lucents. 

You’ve  got  to  say  what  are  the  real  markets  and  what  are 
the  transition  markets.  Just  like  we  made  a  decision  in  the 
enterprise:  When  we  started  to  move  from  routing  into 
LAN  switching,  a  lot  of  people  said  we’ve  got  to  go  to  hubs. 
And  we  decided  not  to  because  we  thought  that  was  a  tem¬ 
porary  market  that  was  evolutionary.  What  you  just  outlined 
is  a  very  similar  decision;  time  will  tell  if  we  were  right 
or  wrong. 

Right  now,  we  see  [service  providers]  using  the  gateways  to 
get  their  traditional  pricing  down.  We’ve  seen  the  traditional 
players  you’ve  mentioned  doing  almost  anything  to  hold  on  to 
the  business,  which  is  a  nice  way  of  saying  we’ll  take  all  the 
profits  out  of  the  market.  We’re  more  interested  with  how  you  . . . 
protect  your  customers’  evolution  than  we  are  in  going  into  a 
market,  like  the  hub  market  of  prior  times. 

Upstart  carrier  Velocita  filed  for  Chapter  11  last  week.  Cisco  had 
a  major  investment  in  this  customer.  Was  that  a  mistake? 

You  want  to  think  of  this  being  a  race  track.  Nobody  even 
|  qualifies  for  it  if  they  can’t  drive  very,  very  fast.  Nobody  wins 
these  races  by  driving  with  a  foot  on  the  brake.  Will  Cisco  con¬ 
tinue  to  take  business  risks?  Absolutely  Have  we  been  conserv¬ 
ative  in  accounting  for  the  business  risks  we  take?  Absolutely 
You’re  going  to  have  misses.  What  you  do  is  learn  from  each 
;  one  and  say  what  do  you  do  differently  and  get  better  and  bet¬ 
ter  at  that.You’ve  got  to  really  focus  on  profitability  from  the 
beginning. 

If  you’re  going  to  potentially  be  the  No  1  player  in  both  ser¬ 
vice  providers  and  enterprise  by  a  lot,  by  definition  you’ve 
got  to  take  some  risk. Some  will  work, some  will  not. The  po¬ 
tential  is  there  for  40%  to  50%  of  our  business  to  come  from 
i  service  providers.  I  personally  would  be  surprised  if  that  did 
not  occur  * 
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BaCkSpin  Mark  Gibbs 

Flak  in  the  mail 


i 


received  a  certain  amount  of  flak 
about  my  recent  Gearhead  col¬ 
umn  about  an  e-mail  client  called 
IncrediMail. 

First,  the  URL  of  the  vendor’s  site 
got  mangled  to  incredimailxe.com 
rather  than  the  correct  incredimail.com.  Unfortun¬ 
ately  incredimailxe.com  belongs  to  a  Los  Angeles 
company  named  Targetwords.com. 

To  those  who  wrote  complaining  that  Gearhead 
was  in  league  with  the  devil  for  printing  a  URL  that 
pointed  to  a  crassly  commercial  site,  all  1  can  say  is, 
so  sue  me. 

But  that  flak  was  slightly  overshadowed  by  what  I 
caught  for  Gearhead  having  the  temerity  to  suggest 
that  HTML  mail  (h-mail?)  might  be  a  good  thing.  Just 
check  out  Scott  Bradner’s  column  this  week  (see 
page  22)  wherein  he  writes, “1  hope  that  [Gibbs]  will 
not  send  me  pretty  e-mail  when  he  sees  this  column 
because  he  will  get  the  letter  back  unread.” 

Reader  Reed  Darcy  wrote:  “I  had  thought  that  an 
old-timer  such  as  yourself  would  be  against  further 
cluttering  the  Internet  with  HTML  e-mail.”  Long-time 
reader  and  frequent  correspondent  Phil  Daley 
opined  that, “The  thing  that  you  did  mention,  frip¬ 
peries,  is  totally  useless  to  anyone  other  than  a  new¬ 
bie  or  a  total  jerk.” 

Gentlemen,  such  anger  and  disgust!  Since  when 


does  HTML  mail  qualify  for  the  level  of  opprobrium 
one  might  bestow  on,  say  Pat  Robertson? 

Bradner  lists  some  security  and  privacy  issues  that 
are  associated  with  HTML  mail,  but  in  reality  it  is  not 
HTML  mail  that  is  the  real  problem. The  real  prob¬ 
lem  lies  in  the  way  that  e-mail  clients  are  implement¬ 
ed  and  configured. 

For  example,  in  his  column  Bradner  refers  to  what  I 
think  is  called  the  Reaper  Exploit,  a  hack  that  was 
publicized  in  1998  by  Carl  Voth.He  describes  how 
JavaScript  routines  in  HTML  mail  could  copy  the 
contents  of  e-mail  messages  to  a  third  party 

Thus,  if  you  send  me  HTML  mail  that  implements 
the  Reaper  Exploit  and  I  forward  it  with  a  comment 
to  someone  else,  when  the  message  is  opened  and 
rendered,  the  JavaScript  will  be  executed  and  the 
message  forwarded  back  to  the  original  sender,  or 
wherever  it  is  meant  to  go. 

Well,  this  hack  is  real  and  will  work  —  at  least  as 
long  as  the  receiving  e-mail  client  lets  JavaScript  exe¬ 
cute.  But  who  would  allow  such  a  thing?  For  exam¬ 
ple,  in  Microsoft  Outlook  (1  can  imagine  Bradner 
shuddering  at  the  mention  of  the  product),  there  are 
easily  accessed  security  settings  that  even  a  newbie 
can  use  to  disable  scripts  and  ActiveX  controls. 

“Ah,”  I  hear  some  of  you  say“But  newbies  abound 
and  have  not  the  wit  to  deflect  the  slings  and 
arrows  of  outrageous  hacks!  Outlook  and  its  kin¬ 


dred  HTML-rendering  spawn  from  hell  should  be 
purged  from  the  face  of  the  'Net  forthwithFTo 
which,  I  must  first  say, you’ve  been  reading  way  too 
much  Shakespeare.  Secondly, so  what?  There  will 
always  be  newbies,  and  IT’s  job  is  to  protect  and 
educate  them  so  that  they  can  do  whatever  job 
they  are  supposed  to  do. 

But  above  and  beyond  the  security  and  newbie 
issues,  that  e-mail  clients  might  be  run  while 
improperly  configured  doesn't  mean  that  HTML 
mail  is  bad.  1  suspect  a  certain  amount  of  reac¬ 
tionary  thinking  here,  as  some  of  the  comments 
about  the  unnecessary  “pretti ness”  of  HTML  mail 
seems  more  in  line  with  the  old  school  attitude  of 
the  ’Net  geeks  (you  know,  those  guys  who  wear  the 
T-shirts  that  read  “The  Internet  is  full,  go  away”). 

What  1  like  about  HTML  mail  is  that  e-mail  stops 
being  flat  and  dull.You  want  something  to  put  the 
newbies  off?  Just  load  ’em  down  with  an  in-box  full 
of  boring  plain-text  messages.  It’s  bad  enough  that 
most  people  put  so  little  care  in  the  e-mail  content, 
but  to  have  to  read  badly  written  and  ugly  messages 
is  adding  insult  to  injury 

I  contend  that  HTML  mail  is  something  we  need 
more  of  and  if  people  would  get  their  security  set¬ 
tings  sorted  out,  it  is  quite  perfectly  safe. 

Beautiful  fripperies  to  backspin@gibbs.com. 
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HP  apologizes  for  TV  commercial,  but . . . 

Hewlett-Packard  says  it’s  sorry.  Not  so  sorry  that 
the  company  will  stop  airing  the  TV  commercial  that 
has  infuriated  many  readers  of  this  column  —  at 
least  not  yet.  More  like  the  obligatory  kind  of  sorry 
you’ll  hear  from  politicians  after  they  mash  their  toes 
against  their  tonsils. 

"I  personally  want  to  apologize,"  says  Caron 
Kushner,  HP’s  worldwide  advertising  manager.  “We  never  meant  to  cause  this  reac¬ 
tion.  ...  It’s  very  bad  publicity  for  us,  and  we  have  a  high  enough  profile  right  now  as 
it  is  without  adding  to  it." 

Add  to  it  they  have,  however. 

In  case  you're  just  tuning  in,  the  commercial  makes  men  look  like  idiots  —  as  so 
many  commercials  and  sitcoms  do  these  days  —  by  showing  a  guy  searching  for 
items  off  a  “shopping  list"  that  we  later  see  is  a  collection  of  photographs  printed  by 
liis  wife.  The  punch  line:  “A  shopping  list  that  won't  confuse  your  husband." 

A  critical  column  here  two  weeks  ago  (www.nwfusion.com,  DocFinder:  9760)  trig¬ 
gered  an  avalanche  of  e-mail  from  men  and  women  who  have  had  their  fill  of  this 
mindless  stereotyping.  We  shared  some  of  that  e-mail  last  week  (DocFinder:  9759). 

(An  aside:  A  few  readers  have  written  to  suggest  that  this  subject  isn't  important 
enough  to  warrant  a  public  airing.  Objection  noted  ...  and  dismissed.  In  20-plus 
years  of  writing  columns,  I  have  never  seen  this  volume  of  reaction  to  any  other 
topic.  A  lot  of  people  care  passionately,  even  if  you  might  believe  they  shouldn't.) 

Exactly  how  many  are  mad  at  HP  remains  open  to  interpretation. 

“Ninety  million  people  in  North  America  have  seen  the  spot,  and  I’ve  gotten  about 
olaint]  e-mails,"  Kushner  says.  "But  I  don't  know  if  that's  indicative." 
ed  her  it  isn't,  having  personally  received  more  than  100  e-mails  with  at  least 
ing  the  commercial  out  of  bounds.  More  than  a  few  writers  said  they’re  done 
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buying  HP  products, 

(Another  aside:  A  handful  of  you  have  written  to  call  those  of  us  who  are  com¬ 
plaining  “whiners."  Lighten  up,  we've  been  told,  turn  the  other  cheek. ...  In  other 
words,  go  on  being  a  bunch  of  wimps. ...  No,  thanks.) 

Kushner  says  she  finds  the  negative  reaction  surprising  in  part  because  HP 
showed  the  commercial  to  focus  groups  here  and  abroad  before  putting  it  on  air. 

“People  thought  it  was  funny  ...  a  twist  on  the  traditional  cliche  of  women  shop¬ 
ping,"  she  says. 

Just  goes  to  show  the  value  of  focus  groups. 

One  test  audience  did  request  a  change  in  the  commercial  script. 

"People  in  Germany  wanted  the  husband  to  be  overweight  and  to  have  a  beer 
belly,  and  we  said  we  wouldn't  do  that  because  we  felt  that  was  a  stereotype  malign¬ 
ing  men,"  Kushner  says. 

In  other  words,  the  company  decided  that  poking  fun  at  fat  men  would  be  wrong, 
so  instead  it  poked  fun  at  a//  men. 

(One  last  aside:  Those  of  you  who  have  suggested  that  men  deserve  this  treatment 
as  retribution  for  past  discrimination  against  women  need  to  ask  yourselves  if  that's 
a  value  you  want  to  paSs  on  to  your  children.) 

Finally,  many  of  those  objecting  to  the  ad  have  wondered  whether  HP  CEO  Carly 
Fiorina  would  have  aired  such  a  commercial  had  it  portrayed  a  woman  as  the  per¬ 
son  too  dumb  to  shop  without  pictures. 

"That's  a  really  good  point,”  Kushner  says.  “And  actually,  Carly  does  see  all  the 
[commercials]  and  does  approve  all  the  work.  I’ve  heard  that,  too,  that  if  it  was 
reversed  and  it  was  a  woman  would  we  get  a  barrage  of  letters  from  feminist 
groups?  Most  likely,  we  would." 

So  is  there  any  chance  the  company  might  can  the  commercial? 

"We’re  tracking  it,"  Kushner  says.  “Obviously,  if  [the  complaints]  become  ubiqui¬ 
tous  we  would  pull  the  ad." 

You  haven 't  weighed  in  yet?  What's  wrong?  The  address  is  buzz@nww.com. 
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HP  removes  the  complexity  from 
realizing  a  wireless  enterprise  solution. 

No  more  multiple  vendors.  No  more  confusion.  Just  HP,  the  single 
source  you  need  when  it  comes  to  planning,  deploying  and 
maintaining  all  kinds  of  wireless  enterprise  solutions.  Going  wireless 
is  a  big  deal.  You  want  expertise.  And  HP's  got  it,  along  with  the 
right  hardware  and  right  strategic  partnerships  to  build  a  wireless 
infrastructure  that  suits  your  enterprise. 

HP  will  prove  it  to  you  with  a  low-risk  program  that  can  be  quickly 
deployed  at  a  competitive,  fixed  cost.  Your  employees  will  be  working 
wirelessly  in  no  time,  accessing  e-mail,  critical  information  and 
back-end  applications  as  if  they  were  at  their  desks.  So  don't  get 
bogged  down  in  the  confusion  and  uncertainty  around  wireless. 
Plow  right  through  it. 

To  find  out  more,  call  1-800-AT-COMPAQ  code:  TLD 
or  visit  hp.com/info/mobility. 
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Customers  worldwide  are  reaching  their 
Metro  destinations  the  same  way:  they’ve 
chosen  the  RS  38000  because  it  delivers  the 
unique  combination  of  service  creation  and 
high-availability  networking  required  at  the 
core  of  the  world’s  largest  Metropolitan  Area 
Networks.  With  170  Gigabit  of  switching 
capacity,  the  RS  38000  offers  the  richest 
array  of  metro-optimized  services  over  the 
widest  range  of  network  interfaces.  Using 
hardware-based,  metro-optimized  MPLS,  the 
RS  38000  provides  cutting-edge  IP  services 
such  as  Bandwidth-on-Demand,  Virtual 
Leased  Lines,  and  Transparent  LANs. 


The  RS  38000  also  sets  the  industry 
standard  for  high-availability  Metro  networking. 
Riverstone’s  Hitless  Protection  System  (HPS) 
enables  live  software  upgrades  and  control 
module  restarts  without  disrupting  customer 
traffic.  Full-hardware  redundancy  and  software 
resiliency  features  such  as  VRRP,  RSTP, 
ring-optimized  RSTP,  and  graceful  routing 
restart  make  the  RS  38000  a  true  carrier-class 
router.  Which  is  why  it’s  already  converting  raw 
bandwidth  into  profitable  services  in  the 
world’s  largest  Metropolitan  Area  Networks. 


THE  RS  38000  POWERS  THE  WORLD'S 
LARGEST  METRO  NETWORKS. 
ARE  YOU  ON  BOARD? 


Get  on  board  now.  Contact  us  at  877-778-9595 


or  visit  riverstonenet.com 
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